CVE-2006-2487
CVE-2006-2487 describes multiple PHP remote file inclusion vulnerabilities in ScozNews 1.2.1 and earlier. The flaw allows remote attackers to execute arbitrary PHP code by supplying a crafted URL for the CONFIG[main_path] parameter across several PHP modules (functions.php, template.php, news.php...