MidnightBSD

Advisories for develooping

CVE-2006-7011 HIGH

PHP remote file inclusion vulnerability in adminips.php in Develooping Flash Chat allows remote attackers to execute arbitrary PHP code via a URL in the banned_file parameter. NOTE: CVE disputes this vulnerability because banned_file is set to a constant value

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
develooping flash_chat 4.5.7
develooping flash_chat 4.6
develooping flash_chat 4.6.1