2 matches found
CVE-2006-3422
PHP remote file inclusion vulnerability in WonderEdit Pro CMS allows remote attackers to execute arbitrary PHP code via the configtemplatepath parameter in userbottom.php, as used by multiple templates including 1 rwb template/rwb/userbottom.php, 2 gwb template/rwb/userbottom.php, 3 blues, 4...
CVE-2006-3422
CVE-2006-3422 describes a PHP remote file inclusion vulnerability in WonderEdit Pro CMS . An attacker can trigger arbitrary PHP code execution by supplying a crafted value to the config[template_path] parameter in user_bottom.php , affecting multiple templates (rwb, gwb, blues, bluwhi, grns). The...