2 matches found
Remote file inclusion
PHP remote file inclusion vulnerability in includes/classtemplate.php in Quezza 1.0 and earlier, and possibly 1.1.0 allows remote attackers to execute arbitrary PHP code via a URL in the quezzarootpath parameter...
CVE-2006-2485
CVE-2006-2485 refers to a PHP remote file inclusion vulnerability in Quezza, affecting 1.0 and earlier (possibly 1.1.0). The flaw is in includes/class_template.php where an attacker can supply a URL via the quezza_root_path parameter to execute arbitrary PHP code on the affected server. The conne...