CVE-2006-4458
CVE-2006-4458 describes a directory traversal in phpGroupWare up to version 0.9.16.010 where an attacker can cause arbitrary local file inclusion via a crafted GLOBALS[phpgw_info][user][preferences][common][country] parameter containing a .. sequence followed by a null byte (%00). The affected co...