PHP remote file inclusion vulnerability in includes/header.inc.php in Dragoon 0.1 allows remote attackers to execute arbitrary PHP code via a URL in the root parameter.Referenceshttps://www.exploit-db.com/exploits/5393https://exchange.xforce.ibmcloud.com/vulnerabilities/41680http://www.securityfocus.com/bid/28660
