CVE-2006-7173
CVE-2006-7173 affects PHP-Stats prior to 0.1.9.1b. Description: direct static code injection in admin.php allows remote PHP code execution via crafted option_new[report_w_day] in a preferenze action, which can later be accessed through option/php-stats-options.php. NVD assigns a HIGH base score (...