3 matches found
CVE-2006-5292
PHP remote file inclusion vulnerability in photocomment.php in Exhibit Engine 1.5 RC 4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the toroot parameter...
CVE-2006-5292
CVE-2006-5292 describes a PHP remote file inclusion vulnerability in Exhibit Engine 1.5 RC 4 and earlier, where a URL in the toroot parameter can lead to arbitrary PHP code execution. Affected component is photo_comment.php within Exhibit Engine; root cause is improper handling of the toroot para...
CVE-2006-5292
PHP remote file inclusion vulnerability in photocomment.php in Exhibit Engine 1.5 RC 4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the toroot parameter...