PHP remote file inclusion vulnerability in install.php in Somery 0.4.6 allows remote malicious users to execute arbitrary PHP code via a URL in the skindir parameter, a different vector than CVE-2006-4669. NOTE: the documentation says to remove install.php after installation.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
somery somery 0.4.6 |