CVE-2006-4596

Name of the Vulnerable Software and Affected Versions MyBace Light Skrip (affected versions not specified)

Description The issue allows remote attackers to execute arbitrary PHP code when register globals is enabled. This can be achieved via the hauptverzeichniss parameter in "includes/login check.php" and the template back parameter in "admin/login/content/user daten.php".

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.