CVE-2006-4443

Description

PHP remote file inclusion vulnerability in myajaxphp.php in AlstraSoft Video Share Enterprise allows remote attackers to execute arbitrary PHP code via a URL in the config[BASE_DIR] parameter.

Affected products

• alstrasoft / video_share_enterprise4.0 – 4.0

References

• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/28583
• MISChttp://www.securityfocus.com/archive/1/444416/100/0/threaded
• MISChttp://www.securityfocus.com/bid/19724
• MISChttp://securityreason.com/securityalert/1467