CVE-2006-4285

2006-08-22T17:04:00
ID CVE-2006-4285
Type cve
Reporter cve@mitre.org
Modified 2018-10-17T21:34:00

Description

PHP remote file inclusion vulnerability in news.php in Fantastic News 2.1.3 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the CONFIG[script_path] parameter. NOTE: it was later reported that 2.1.5 is also affected.