CVE-2006-4040 Information

Description

PHP remote file inclusion vulnerability in myevent.php in myWebland myEvent 1.3 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the myevent_path parameter.

Reference

http://secunia.com/advisories/19680 http://www.osvdb.org/24725 http://www.securityfocus.com/bid/19246 http://www.vupen.com/english/advisories/2006/1384 https://exchange.xforce.ibmcloud.com/vulnerabilities/28347 https://www.exploit-db.com/exploits/2093