Loading
tiki-graph_formula.php in TikiWiki 1.9.8 allows remote attackers to execute arbitrary code via PHP sequences in the f array parameter, which are processed by create_function.
Use CWE-94, Tiki vendor hub and Tikiwiki Cms\/Groupware product page to widen CVE-2007-5423 into its surrounding weakness, vendor, and product context.