PHP remote file inclusion vulnerability in themes/program/themesettings.inc.php in Segue CMS 1.5.8 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the themesdir parameter.
References
Configurations
History
No history.
Information
Published : 2006-10-25 10:07
Updated : 2024-02-28 11:01
NVD link : CVE-2006-5497
Mitre link : CVE-2006-5497
CVE.ORG link : CVE-2006-5497
JSON object : View
Products Affected
middlebury_college
- segue_cms
CWE