CVE-2006-4011 Information
Share on:
Feb 14, 2021
cve
Description
PHP remote file inclusion vulnerability in esupport/admin/autoclose.php in Kayako eSupport 2.3.1 and earlier when register_globals is enabled allows remote attackers to execute arbitrary PHP code via a URL in the subd parameter.
Reference
http://secunia.com/advisories/21330 http://www.securityfocus.com/bid/19315 https://exchange.xforce.ibmcloud.com/vulnerabilities/28199 https://www.exploit-db.com/exploits/2115