PHP remote file inclusion vulnerability in admin/includes/spaw/spaw_control.class.php in Download-Engine 1.4.2 allows remote attackers to execute arbitrary PHP code via a URL in the spaw_root parameter. NOTE: CVE analysis suggests that this issue is actually in a third party product, SPAW Editor PHP Edition, so this issue is probably a duplicate of CVE-2006-4656.
The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.
| Link | Tags |
|---|---|
| http://securityreason.com/securityalert/1723 | third party advisory |
| https://www.exploit-db.com/exploits/2521 | exploit |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/29493 | vdb entry |
| http://spaw.cvs.sourceforge.net/spaw/spaw/spaw_control.class.php?r1=1.19&r2=1.20 | |
| http://www.securityfocus.com/bid/20500 | vdb entry exploit |
| http://www.vupen.com/english/advisories/2006/4025 | vdb entry vendor advisory |
| http://spaw.cvs.sourceforge.net/spaw/spaw/spaw_control.class.php?r1=1.25&r2=1.26 | |
| http://secunia.com/advisories/22383 | third party advisory vendor advisory |
| http://spaw.cvs.sourceforge.net/spaw/spaw/docs/ChangeLog.txt?view=markup | |
| http://www.securityfocus.com/archive/1/448450/100/0/threaded | mailing list |