Vulnerabilities

CVE-2006-4656

by Fred · 08/09/2006

PHP remote file inclusion vulnerability in admin/editeur/spaw_control.class.php in Web Provence SL_Site 1.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the spaw_root parameter. NOTE: CVE analysis suggests that this issue is actually in a third party product, SPAW Editor PHP Edition.

Date published : 2006-09-08

http://www.securityfocus.com/bid/19892

http://www.securityfocus.com/archive/1/445520/100/0/threaded

Similar

Tags: Cybersecurity Alert