CVE-2006-2129
CVE-2006-2129 describes a direct static code injection in Pro Publish 2.0. The flaw allows remote authenticated administrators to execute arbitrary PHP code by editing certain settings stored in set_inc.php. Documents consistently identify the affected product as Pro Publish 2.0 and note that acc...