2 matches found
CVE-2006-4848
Hitweb 3.0 is affected by PHP remote file inclusion vulnerabilities allowing an attacker to cause arbitrary PHP code execution by supplying a URL in the REP_CLASS parameter to a set of PHP files (index.php, arbo.php, framepoint.php, genpage.php, lienvalider.php, appreciation.php, partenariat.php,...
CVE-2006-4848
Multiple PHP remote file inclusion vulnerabilities in Brian Fraval Hitweb 3.0 allow remote attackers to execute arbitrary PHP code via a URL in the REPCLASS parameter to 1 index.php, 2 arbo.php, 3 framepoint.php, 4 genpage.php, 5 lienvalider.php, 6 appreciation.php, 7 partenariat.php, 8...