CVE-2006-4637

2006-09-08T20:04:00
ID CVE-2006-4637
Type cve
Reporter cve@mitre.org
Modified 2018-10-17T21:38:00

Description

Multiple PHP remote file inclusion vulnerabilities in ACGV News 0.9.1 allow remote attackers to execute arbitrary PHP code via a URL in the PathNews parameter in (1) header.php or (2) news.php. NOTE: portions of these details are obtained from third party information. Successful exploitation requires that "register_globals" is enabled.