CVE-2006-5105
SyntaxCMS versions 1.1.1–1.3 are vulnerable to PHP remote file inclusion via unvalidated input in admin/testing/tests/0030_init_syntax.php (init_path) and in admin/testing/index.php (unspecified parameter); the 0004_init_urls.php vector is already covered by CVE-2006-5055. This allows remote atta...