Description
PHP remote file inclusion vulnerability in config.php in FrontAccounting 1.12 Build 31 allows remote attackers to execute arbitrary PHP code via a URL in the path_to_root parameter.
Remediation
References
Related Vulnerabilities
WordPress Plugin MyPixs Local File Inclusion (0.3)
WordPress Plugin Groups Multiple Cross-Site Scripting Vulnerabilities (1.8.0)
WordPress Plugin Restricted Site Access Unspecified Vulnerability (2.0)
PHP Other Vulnerability (CVE-2005-0596)
WordPress Plugin Genesis Simple Defaults Arbitrary File Upload (1.0.0)