2 matches found
CVE-2006-4276
PHP remote file inclusion vulnerability in Tutti Nova 1.6 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the TNLIBDIR parameter to novalib/class.novaEdit.mysql.php...
CVE-2006-4276
The CVE-2006-4276 entry concerns a PHP remote file inclusion vulnerability in Tutti Nova 1.6 and earlier. The issue allows remote code execution by supplying a URL to the TNLIB_DIR parameter in novalib/class.novaEdit.mysql.php. Affected software is Tutti Nova (version 1.6 and earlier); the root c...