MidnightBSD

Advisories for actualscripts

CVE-2006-1959 HIGH

PHP remote file inclusion vulnerability in direct.php in ActualScripts ActualAnalyzer Lite 2.72 and earlier, Gold 7.63 and earlier, and Server 8.23 and earlier allows remote attackers to execute arbitrary code via a URL in the rf parameter.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
actualscripts actualanalyzer 2.72
actualscripts actualanalyzer 7.63
actualscripts actualanalyzer *