The remote web server contains a PHP application that is affected by
several remote file include flaws.
Description :
The remote host is running PHP Help Live, a commercial web-based
real-time help tool written using PHP and MySQL.
The version of PHP Help Live installed on the remote host fails to
sanitize input to the abs_path parameter before using it in various
scripts to include files with PHP code. An unauthenticated attacker
may be able to exploit these issues to view arbitrary files or to
execute arbitrary PHP code, possibly taken from third-party hosts.
