CVE-2007-4763

Name of the Vulnerable Software and Affected Versions: PHP Object Framework (PHPOF) versions 20040226 and earlier

Description: The issue allows remote attackers to execute arbitrary PHP code via a URL in the PHPOF INCLUDE PATH parameter. This is due to a remote file inclusion vulnerability in the dbmodules/DB adodb.class.php file.

Recommendations: For PHP Object Framework (PHPOF) versions 20040226 and earlier, consider restricting access to the dbmodules/DB adodb.class.php file to minimize the risk of exploitation. Avoid using the PHPOF INCLUDE PATH parameter with untrusted input until the issue is resolved.