CVE-2006-2331
Summary: CVE-2006-2331 concerns PHP-Fusion 6.00.306 with multiple directory traversal weaknesses that let remote attackers cause local-file inclusion and arbitrary code execution via two input vectors. Specifically, an unauthenticated attacker can inject a ".." sequence in settings[locale] within...