2 matches found
Sabdrimer advanced1.php pluginpath0 Parameter CMS PHP Code Execution - Ver2 (CVE-2006-3520)
A code execution vulnerability has been reported in Sabdrimer. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
CVE-2006-3520
Sabdrimer Pro 2.2.4 is affected by a PHP remote file inclusion in skins/advanced/advanced1.php when register_globals is enabled. The vulnerability allows an attacker to supply a URL via the pluginpath[0] parameter to execute arbitrary PHP code, as described in CVE-2006-3520. The NVD entry documen...