Vulnerability Details : CVE-2006-4656
PHP remote file inclusion vulnerability in admin/editeur/spaw_control.class.php in Web Provence SL_Site 1.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the spaw_root parameter. NOTE: CVE analysis suggests that this issue is actually in a third party product, SPAW Editor PHP Edition.
Vulnerability category: File inclusion
Exploit prediction scoring system (EPSS) score for CVE-2006-4656
Probability of exploitation activity in the next 30 days: 4.62%
CVSS scores for CVE-2006-4656
|Base Score||Base Severity||CVSS Vector||Exploitability Score||Impact Score||Source|
References for CVE-2006-4656