CVE-2006-2256
EQdkp 1.3.0 and earlier are affected by a PHP remote file inclusion in includes/dbal.php, exploitable via a URL supplied to the eqdkp_root_path parameter, allowing execution of arbitrary PHP code on the server. Root cause is improper handling of user-controlled URL input leading to inclusion of r...