PHP remote file inclusion vulnerability in index.php in GeoBB Georgian Bulletin Board allows remote attackers to execute arbitrary PHP code via a URL in the action parameter. NOTE: CVE disputes this issue, since GeoBB 1.0 sets $action to a whitelisted value
https://exchange.xforce.ibmcloud.com/vulnerabilities/31335
http://www.securityfocus.com/archive/1/456251/100/0/threaded
http://www.attrition.org/pipermail/vim/2007-January/001230.html