PHP remote file inclusion vulnerability in inc/common.php in GlobalMegaCorp dvddb 0.6 allows remote attackers to execute arbitrary PHP code via a URL in the config parameter.Referenceshttp://www.securityfocus.com/archive/1/459149/100/0/threadedhttp://osvdb.org/33679http://securityreason.com/securityalert/2221
