CVE-2006-4827

2006-09-15T22:07:00
ID CVE-2006-4827
Type cve
Reporter cve@mitre.org
Modified 2017-10-19T01:29:00

Description

Multiple PHP remote file inclusion vulnerabilities in Vmist Downstat 1.8 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the art parameter to (1) admin.php, (2) chart.php, (3) modes.php, or (4) stats.php. Successful exploitation requires that "register_globals" is enabled.