2 matches found
CVE-2006-4103
PHP remote file inclusion vulnerability in article-raw.php in Jason Alexander phNNTP 1.3 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the filenewsportal parameter...
CVE-2006-4103
CVE-2006-4103 describes a PHP remote file inclusion in Jason Alexander’s phNNTP up to version 1.3, where the parameter file_newsportal accepts a URL leading to arbitrary PHP code execution via article-raw.php. The underlying issue is improper inclusion of user-controlled URLs, allowing an attacke...