CVE-2006-4451

CVE-2006-4451 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Direct static code injection vulnerability in CJ Tag Board 3.0 allows remote attackers to execute arbitrary PHP code via the (1) User-Agent HTTP header in tag.php, which is executed by all.php, and (2) the banned parameter in admin_index.php.

Learn more about our User Device Pen Test.