Yet Another Community System · Yacs Cms · CVE-2006-4532
**Name of the Vulnerable Software and Affected Versions**
Yet Another Community System (YACS) CMS versions 6.6.1 and earlier
**Description**
A remote file inclusion issue allows attackers to execute arbitrary PHP code via a URL in the `context[path to root]` parameter. This affects the articles/article.php file in the YACS CMS.
**Recommendations**
For YACS CMS versions 6.6.1 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.