3 matches found
Remote file inclusion
PHP remote file inclusion vulnerability in adminbereich/designconfig.php in Fastpublish CMS 1.9999 allows remote attackers to execute arbitrary PHP code via a URL in the configfsBase parameter, a different vector than CVE-2006-2726...
CVE-2006-2726
PHP remote file inclusion vulnerability in Fastpublish CMS 1.6.9.d allows remote attackers to include arbitrary files via the configfsBase parameter in 1 drucken.php, 2 drucken2.php, 3 emailanbenutzer.php, 4 rechnung.php, 5 suche/search.php and 6 adminbereich/admin.php...
CVE-2006-2726
CVE-2006-2726 involves a PHP remote file inclusion in Fastpublish CMS 1.6.9.d. The vulnerability arises from using the user-supplied config[fsBase] parameter to include files in multiple scripts (drucken.php, drucken2.php, email_an_benutzer.php, rechnung.php, suche/search.php, adminbereich/admin....