CVE-2006-2424
This CVE concerns a PHP remote file inclusion in ezUserManager up to version 1.6 when register_globals is enabled. The vulnerability allows an attacker to cause the application to include a remote file via a URL supplied in the ezUserManager_Path parameter to ezusermanager_pwd_forgott.php , with ...