2 matches found
CVE-2006-5434
PHP remote file inclusion vulnerability in p-news.php in P-News 1.16 and 1.17 allows remote attackers to execute arbitrary PHP code via a URL in the pnlang parameter...
CVE-2006-5434
CVE-2006-5434 is a PHP remote file inclusion vulnerability in P-News versions 1.16 and 1.17. The flaw allows remote attackers to execute arbitrary PHP code by supplying a URL in the pn_lang parameter, enabling arbitrary code execution. The NVD entry lists a high impact (base score 7.5; Confidenti...