CVE-2006-1013

PHP remote file include vulnerability in index.php in SMartBlog (aka SMBlog) 1.2 allows remote attackers to include and execute arbitrary PHP files via (1) the pg parameter and (2) a query string without a parameter.

Date published : 2006-03-06

http://www.securityfocus.com/bid/16905

http://www.securityfocus.com/archive/1/426498/100/0/threaded