CVE-2006-4889 Information

Description

Multiple PHP remote file inclusion vulnerabilities in Telekorn SignKorn Guestbook (SL) 1.3 and earlier when register_globals is enabled allow remote attackers to execute arbitrary PHP code via a URL in the dir_path parameter in (1) index.php (2) includes/functions.gb.php (3) includes/functions.admin.php (4) includes/admin.inc.php (5) help.php (6) smile.php (7) entry.php; (8) adminhelp0.php (9) adminhelp1.php (10) adminhelp2.php and (11) adminhelp3.php in (a) help/en and (b) help/de directories; and the (12) preview.php (13) log.php (14) index.php (15) config.php and (16) admin.php in the (c) admin directory a different set of vectors than CVE-2006-4788.

Reference

http://securityreason.com/securityalert/1619 http://www.osvdb.org/32199 http://www.osvdb.org/32200 http://www.osvdb.org/32201 http://www.osvdb.org/32202 http://www.osvdb.org/32203 http://www.osvdb.org/32204 http://www.osvdb.org/32205 http://www.osvdb.org/32206 http://www.osvdb.org/32207 http://www.osvdb.org/32208 http://www.osvdb.org/32209 http://www.osvdb.org/32210 http://www.osvdb.org/32211 http://www.osvdb.org/32212 http://www.osvdb.org/32213 http://www.osvdb.org/32214 http://www.osvdb.org/32215 http://www.osvdb.org/32216 http://www.osvdb.org/32217 http://www.osvdb.org/32218 http://www.securityfocus.com/archive/1/446086/100/0/threaded http://www.securityfocus.com/bid/19977 http://www.telekorn.com/forum/showthread.php?t=1427 https://exchange.xforce.ibmcloud.com/vulnerabilities/28888