1.1.01

DATE	CVE	VULNERABILITY TITLE	RISK
2007-05-02	CVE-2007-2456	Remote File Include vulnerability in Firefly 1.1.01 Multiple PHP remote file inclusion vulnerabilities in FireFly 1.1.01 allow remote attackers to execute arbitrary PHP code via a URL in the doc_root parameter to (1) localize.php or (2) config.php in modules/admin/include/. network low complexity firefly	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.