CVE-2006-7107

Publication date

2007-03-03 21:00:00

Family

mitre

State

PUBLISHED

Description

PHP remote file inclusion vulnerability in upgrade.php in Coalescent Systems freePBX 2.1.3 allows remote attackers to execute arbitrary PHP code via a URL in the amp_conf[AMPWEBROOT] parameter.