CVE-2006-4158
The CVE describes a PHP remote file inclusion in Spaminator 1.7 and earlier, via Login.php where an attacker can supply a URL in the page parameter to execute arbitrary PHP code. Affected software is Spaminator (versions up to 1.7 and earlier). The vulnerability arises from including a user-contr...