CVE-2006-4645 | HackTesting

PHP remote file inclusion vulnerability in akarru.gui/main_content.php in Akarru Social BookMarking Engine 0.4.3.34 and earlier, and possibly 0.4.4.120, allows remote attackers to execute arbitrary PHP code via a URL in the bm_content parameter.

References

http://securityreason.com/securityalert/1543

http://www.securityfocus.com/bid/19870

http://www.securityfocus.com/archive/1/445605/100/0/threaded

http://secunia.com/advisories/21784

http://www.vupen.com/english/advisories/2006/3491

https://www.exploit-db.com/exploits/2315

https://exchange.xforce.ibmcloud.com/vulnerabilities/28760