NuytsTech Security

CVE-2006-1955

by ·

PHP remote file inclusion vulnerability in authent.php4 in Nicolas Fischer (aka NFec) RechnungsZentrale V2 1.1.3, and possibly earlier versions, allows remote attackers to execute arbitrary PHP code via a URL in the rootpath parameter.

Date published : 2006-04-21

http://www.securityfocus.com/bid/17589

http://archives.neohapsis.com/archives/bugtraq/2006-04/0384.html

Tags: