NuytsTech Security

CVE-2006-4531

by ·

PHP remote file inclusion vulnerability in lib/config.php in Pheap CMS 1.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the lpref parameter.

Date published : 2006-09-01

http://www.securityfocus.com/bid/19775

http://www.securityfocus.com/archive/1/444882/100/0/threaded

Tags: