CVE-2006-5562

SourceForge (aka alexandria) 1.0.4 is affected by a PHP remote file inclusion via the sys_dbtype parameter in include/database.php, enabling arbitrary PHP code execution. The CVSS base score is 7.5 (HIGH) with network access, low attack complexity, and no authentication required. No exploitation ...