CVE-2005-4132

Name of the Vulnerable Software and Affected Versions Contenido versions prior to 4.6.4

Description The issue is related to an unspecified "security leak" vulnerability. It is likely that this is a PHP remote file include vulnerability, which occurs when register globals is on and allow url fopen is true. The impact and attack vectors of this issue are not specified.

Recommendations For versions prior to 4.6.4, update to version 4.6.4 or later to resolve the issue. As a temporary workaround, consider disabling the allow url fopen setting and turning off register globals to minimize the risk of exploitation.