Codeworks · Codeworks Gnomedia Subberz[Lite] · CVE-2006-3689
**Name of the Vulnerable Software and Affected Versions**
Codeworks Gnomedia SubberZ[Lite] (affected versions not specified)
**Description**
The issue allows remote attackers to execute arbitrary PHP code via a URL in the `myadmindir` parameter in the user-func.php file. However, a third party has disputed this, claiming that the `myadmindir` variable is set before any GET variables are processed.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.