CVE-2006-4656

2006-09-08T20:04:00
ID CVE-2006-4656
Type cve
Reporter NVD
Modified 2017-10-18T21:29:23

Description

PHP remote file inclusion vulnerability in admin/editeur/spaw_control.class.php in Web Provence SL_Site 1.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the spaw_root parameter. NOTE: CVE analysis suggests that this issue is actually in a third party product, SPAW Editor PHP Edition.