dicshunary 0.1 alpha - Remote File Inclusion via dicshunary_root_path Parameter
PHP remote file inclusion vulnerability in check_status.php in dicshunary 0.1 alpha allows remote attackers to execute arbitrary PHP code via a URL in the dicshunary_root_path parameter.
cutenews_aj-fork 167f - Remote File Inclusion via cutepath Parameter
PHP remote file inclusion vulnerability in inc/shows.inc.php in cutenews aj-fork (CN:AJ) 167f and earlier allows remote attackers to execute arbitrary PHP code via a URL in the cutepath parameter.