CVE-2006-4052

Turnkey Web Tools PHP Simple Shop 2.0 and earlier are affected by multiple PHP remote file inclusion vulnerabilities. The abs_path parameter in admin/index.php, admin/adminindex.php, admin/adminglobal.php, admin/login.php, admin/menu.php, and admin/header.php can be used to supply a URL that lead...