CVE-2006-6042

2006-11-21T19:07:00
ID CVE-2006-6042
Type cve
Reporter NVD
Modified 2017-10-18T21:29:43

Description

PHP remote file inclusion vulnerability in core/editor.php in phpWebThings 1.5.2 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the editor_insert_bottom parameter.