cpe:/a:phpmytourney:phpmytourney CVE-2007-4757 2007-09-08T06:17:00.000-04:00 2017-09-28T21:29:22.283-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2007-09-10T10:01:00.000-04:00 ALLOWS_OTHER_ACCESS BID 25579 OSVDB 38331 EXPLOIT-DB 4368 VUPEN ADV-2007-3112 XF phpmytourney-menu-file-include(36495) PHP remote file inclusion vulnerability in menu.php in phpMytourney allows remote attackers to execute arbitrary PHP code via a URL in the functions_file parameter.