CVE-2006-0144
CVE-2006-0144 affects PHP PEAR 0.2.2 (used in Apache2Triad). The proxy server feature in go-pear.php can be redirected to a malicious proxy server that serves a modified Tar.php containing a malicious extractModify function, enabling remote attackers to execute arbitrary PHP code. The description...