CVE-2006-4656

2006-09-09T00:04:00
ID CVE-2006-4656
Type cve
Reporter cve@mitre.org
Modified 2018-10-17T21:38:00

Description

PHP remote file inclusion vulnerability in admin/editeur/spaw_control.class.php in Web Provence SL_Site 1.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the spaw_root parameter. NOTE: CVE analysis suggests that this issue is actually in a third party product, SPAW Editor PHP Edition.