CVE-2006-0064
The CVE-2006-0064 entry concerns CubeCart. Multiple connected records confirm a PHP remote file inclusion vulnerability in includes/orderSuccess.inc.php, exploitable via a URL parameter glob[rootDir] that allows execution of arbitrary PHP code. This indicates a client-controllable file inclusion ...