3 matches found
Flashchat aedating4CMS.php dirinc Parameter PHP Code Execution - Ver2 (CVE-2006-4583)
A code execution vulnerability has been reported in FlashChat. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Flashchat aedating4CMS.php dirinc Parameter PHP Code Execution - Ver2 (CVE-2006-4583)
A code execution vulnerability has been reported in FlashChat. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
CVE-2006-4583
FlashChat before 4.6.2 contains multiple PHP remote file inclusion vulnerabilities that allow remote attackers to execute arbitrary PHP code via a URL in the dir[inc] parameter of inc/cmses/aedatingCMS.php, inc/cmses/aedatingCMS2.php, or inc/cmses/aedating4CMS.php. Root cause is improper handling...