CVE-2006-6445
CVE-2006-6445 affects Envolution prior to or including version 1.1.0. It is a directory traversal vulnerability in error.php that allows remote attackers to include and execute arbitrary local files by supplying a .. (dot dot) in the PNSVlang parameter, demonstrated by injecting PHP sequences int...