CVE-2006-6232
PHP remote file inclusion vulnerability in admin/index.php in DreamAccount 3.1 allows remote attackers to execute arbitrary PHP code via a URL in the path parameter.
Date published : 2006-12-01
http://www.securityfocus.com/bid/18579
http://www.securityfocus.com/archive/1/438169/100/100/threaded