NuytsTech Security

CVE-2006-7006

by ·

** DISPUTED **

PHP remote file inclusion vulnerability in upload/admin/team.php in Robin de Graff Somery 0.4.4 allows remote attackers to execute arbitrary PHP code via a URL in the checkauth parameter. NOTE: CVE disputes this vulnerability because the checkauth parameter is only used in conditionals.

Date published : 2007-02-12

http://www.securityfocus.com/bid/18412

http://archives.neohapsis.com/archives/bugtraq/2006-06/0242.html

Tags: