Zen Cart: remote file inclusion attempt Description   Using the index.php script and the autoLoadConfig parameter, an attacker could execute arbitrary PHP code on the server.       Default configuration   Profiles High Medium Low Internet Action Block Block Block Block Alarm Level Major Minor Minor Major       References         Available since   ASQ v3.2.0       Protects   Zen Cart Multiple Parameter Handling Remote File Inclusion and SQL Injection Vulnerabilities 100 last CVE   CVE-2006-4218 CVE-2006-4215 CVE-2006-4214    Risk level  Moderate