Yet Another Asterisk Panel CVE-2007-2664 Remote Security Vulnerability

Yet Another Asterisk Panel CVE-2007-2664 Remote Security Vulnerability

Yet Another Asterisk Panel is prone to a remote security vulnerability. PHP remote file inclusion vulnerability in includes/common.php in Yaap 1.5 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the root_path parameter, possibly related to the __autoload function.