2 matches found
CVE-2006-4349
PHP remote file inclusion vulnerability in ToendaCMS 1.0.3 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the tcmsadministersite parameter to an unspecified script, probably index.php. NOTE: this issue has been disputed by a third party, who states that...
CVE-2006-4349
ToendaCMS 1.0.3 and earlier is affected by a PHP remote file inclusion vulnerability. The issue allows a remote attacker to execute arbitrary PHP code by supplying a URL in the tcms_administer_site parameter to an unspecified script, probably index.php. Some sources dispute that tcms_administer_s...