EUVD-2006-4877
Multiple PHP remote file inclusion vulnerabilities in UNAK-CMS 1.5 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the dirroot parameter to 1 fckeditor/editor/filemanager/browser/default/connectors/php/connector.php or 2 fckeditor/editor/dialog/fcklink.php...