Multiple PHP remote file inclusion vulnerabilities in PHP Image 1.2 allow remote attackers to execute arbitrary PHP code via a URL in the xarg parameter to (1) xarg_corner.php, (2) xarg_corner_bottom.php, and (3) xarg_corner_top.php.Referenceshttp://osvdb.org/40743http://osvdb.org/40742http://osvdb.org/40744https://www.exploit-db.com/exploits/4565http://www.securityfocus.com/bid/26187
