CVE-2006-4166

CVE-2006-4166 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

PHP remote file inclusion vulnerability in TinyWebGallery 1.5 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the image parameter to (1) image.php or (2) image.php2.

Learn more about our Web App Pen Testing.