|
CVE Reference: CVE-2006-4451
|
|
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.
|
|
Original Page at CVE MITRE:
CVE-2006-4451
|
|
Description:
Direct static code injection vulnerability in CJ Tag Board 3.0 allows remote attackers to execute arbitrary PHP code via the (1) User-Agent HTTP header in tag.php, which is executed by all.php, and (2) the banned parameter in admin_index.php.
|
|
CVE Status:
Candidate
|
|
References:
SAID
Secunia Advisory: SA21561
MISC
http://secunia.com/secunia_research/2006-61/advisory/
BID
19748
|
|
|
Return to the previous page.
|
