CVE-2006-3689

by Fred · 18/07/2006

** DISPUTED **

PHP remote file inclusion vulnerability in user-func.php in Codeworks Gnomedia SubberZ[Lite] allows remote attackers to execute arbitrary PHP code via a URL in the myadmindir parameter. NOTE: this issue has been disputed by a third party that claims that " the myadmindir variable is set before any GET variables are processed."

Date published : 2006-07-18

http://www.securityfocus.com/bid/18990

http://www.securityfocus.com/archive/1/440139/100/0/threaded

CVE-2006-3689

Similar

Recent Posts

Categories

CVE-2006-3689

Share this:

Similar

Recent Posts

Categories

Tags