2 matches found
CVE-2006-5865
PHP remote file inclusion vulnerability in language.inc.php in MyAlbum 3.02 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the langsdir parameter...
CVE-2006-5865
CVE-2006-5865 is a PHP remote file inclusion in MyAlbum 3.02 and earlier, caused by language.inc.php handling of the langs_dir parameter, allowing remote arbitrary PHP code execution via a crafted URL. Affected: MyAlbum 3.02 and earlier. CVSS v2 base score 7.5 (Network, Low Attack Complexity, No ...