CVE-2006-1294
CVE-2006-1294 describes a PHP remote file inclusion in KnowledgebasePublisher 1.2, where the dir parameter in PageController.php can be supplied by an attacker to include and execute arbitrary PHP code. The query/condition relies on unsafely handling a URL input, enabling remote code execution wi...