2 matches found
CVE-2006-3421
PHP remote file inclusion vulnerability in SmartSiteCMS 1.0 and earlier, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via the root parameter in 1 comment.php, 2 admin/comedit.php, 3 admin/test.php, 4 admin/index.php, and 5 admin/include/incadminfoot.php, ...
CVE-2006-3421
CVE-2006-3162 and CVE-2006-3421 describe PHP remote file inclusion in SmartSiteCMS 1.0 and earlier. The issues affect include/inc_foot.php (CVE-2006-3162) and, per CVE-2006-3421, additional vectors such as comment.php, admin/comedit.php, admin/test.php, admin/index.php, and admin/include/inc_admi...