2 matches found
Remote file inclusion
PHP remote file inclusion vulnerability in sampleblogger.php in Comdev Web Blogger 4.1 allows remote attackers to execute arbitrary PHP code via a URL in the pathdocroot parameter, a different vector than CVE-2006-5441...
CVE-2006-5441
CVE-2006-5441 : In Comdev Web Blogger 4.1, the adminfoot.php file is vulnerable to PHP remote file inclusion when register_globals is enabled. An attacker can supply a URL in the path[docroot] parameter to execute arbitrary PHP code. This is exercised via a remote inclusion vector and is describe...