Unspecified vulnerability in PHPCow allows remote attackers to execute arbitrary code via unknown vectors, related to a "file inclusion vulnerability," as exploited in the wild in November 2008.
https://exchange.xforce.ibmcloud.com/vulnerabilities/46714