CVE-2006-6958

Multiple PHP remote file inclusion vulnerabilities in phpBlueDragon 2.9.1 allow remote attackers to execute arbitrary PHP code via a URL in the vsDragonRootPath parameter to 1 teamadmin.php, 2 rssadmin.php, 3 manualadmin.php, and 4 forumadmin.php in includes/rootmodules/, a different set of vecto...

CVE-2006-6958

CVE-2006-6958 : Affects PhpBlueDragon CMS 2.9.1. Multiple PHP remote file inclusion vectors exist through the vsDragonRootPath parameter to includes/root_modules/ (team_admin.php, rss_admin.php, manual_admin.php, forum_admin.php). The underlying issue is improper handling of local/remote URLs in ...