CVE-2006-6516

2006-12-14T01:28:00
ID CVE-2006-6516
Type cve
Reporter cve@mitre.org
Modified 2018-10-17T21:49:00

Description

Multiple PHP remote file inclusion vulnerabilities in KDPics 1.16 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the (1) page parameter to (a) index.php3, or the (2) lib_path parameter to (b) authenticate.inc.php3 or (c) lib/exifer/exif.php.