CVE-2006-4451
CVE-2006-4451 · HIGH Severity
AV:N/AC:L/AU:N/C:P/I:P/A:P
Direct static code injection vulnerability in CJ Tag Board 3.0 allows remote attackers to execute arbitrary PHP code via the (1) User-Agent HTTP header in tag.php, which is executed by all.php, and (2) the banned parameter in admin_index.php.
Learn more about our User Device Pen Test.