2 matches found
CVE-2006-2175
CVE-2006-2175 describes a PHP remote file inclusion vulnerability in FtrainSoft Fast Click 2.3.8 and earlier . The issue arises when an attacker can supply a URL in the path parameter to the vulnerable scripts, specifically in (1) show.php or (2) top.php, enabling remote code execution by includi...
CVE-2006-2241
CVE-2006-2241 : PHP remote file inclusion in Fast Click SQL Lite 1.1.3 and earlier via a crafted URL in the path parameter to show.php enables remote code execution. Root cause is the unsanitized path parameter; condition is non-privileged, remote attacker could exploit. No remediation details ar...