PHP remote file inclusion vulnerability in include/mail.inc.php in Rezervi 3.0.2 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the root parameter, a different vector than CVE-2007-2156.
Max CVSS
6.8
EPSS Score
7.74%
Published
2010-03-16
Updated
2017-08-17
1 vulnerabilities found