CVE-2005-0678 | HackTesting

PHP remote file inclusion vulnerability in formmail.inc.php for Form Mail Script 2.3 and earlier allows remote attackers to execute arbitrary PHP code by modifying the script_root to reference a URL on a remote web server that contains the code.

References

http://secunia.com/advisories/14505

http://www.stadtaus.com/forum/t-1579.html

http://securitytracker.com/id?1013378

http://marc.info/?l=bugtraq&m=110996489800035&w=2