CVE-2006-4123

UNRATED

Description

PHP remote file inclusion vulnerability in boitenews4/index.php in Boite de News 4.0.1 allows remote attackers to execute arbitrary PHP code via a URL in the url_index parameter.

Affected products

boite_de_news / boite_de_news4.0.1 – 4.0.1

References

EXPLOIThttps://www.exploit-db.com/exploits/2153
MISChttp://www.securityfocus.com/bid/19440
MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/28297