2 matches found
CVE-2006-3847
CVE-2006-3847: PHP remote file inclusion in MoSpray (aka com_mospray) 1.8 RC1. The vulnerability affects basedir handling in multiple scripts (admin.php, and possibly details.php, modify.php, newgroup.php, newtask.php, rss.php), allowing an attacker to cause arbitrary PHP code execution via a URL...
CVE-2006-3847
PHP remote file inclusion vulnerability in 1 admin.php, and possibly 2 details.php, 3 modify.php, 4 newgroup.php, 5 newtask.php, and 6 rss.php, in MoSpray aka commospray 1.8 RC1 allows remote attackers to execute arbitrary PHP code via a URL in the basedir parameter...