Multiple PHP remote file inclusion vulnerabilities in Easy Hosting Control Panel for Ubuntu (EHCP) 0.22.8 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the confdir parameter to (1) dbutil.bck.php and (2) dbutil.php in config/. Additional Information - http://www.securityfocus.com/bid/26623/info
Publication date: Fri, 30 Nov 2007 06:46:00 +0000