CVE-2006-1770 Information

Description

Multiple PHP remote file inclusion vulnerabilities in Azerbaijan Design & Development Group (AZDG) AzDGVote allow remote attackers to execute arbitrary PHP code via a URL in the int_path parameter in (1) vote.php (2) view.php (3) admin.php and (4) admin/index.php.

Reference

http://secunia.com/advisories/19630 http://securityreason.com/securityalert/695 http://www.securityfocus.com/archive/1/430691/100/0/threaded http://www.securityfocus.com/bid/17447 http://www.vupen.com/english/advisories/2006/1324 https://exchange.xforce.ibmcloud.com/vulnerabilities/25762