PHP remote file inclusion vulnerability in docs/front-end-demo/cart2.php in Advanced Webhost Billing System (AWBS) 2.4.0 allows remote attackers to execute arbitrary PHP code via a URL in the workdir parameter.Referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/33860http://www.securityfocus.com/bid/23633https://www.exploit-db.com/exploits/3795http://secunia.com/advisories/25046
