Unrated severityNVD Advisory· Published Sep 15, 2006· Updated Jun 16, 2026
CVE-2006-4828
CVE-2006-4828
Description
PHP remote file inclusion vulnerability in zipndownload.php in PhotoPost 4.0 through 4.6 allows remote attackers to execute arbitrary PHP code via a URL in the PP_PATH parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
7cpe:2.3:a:photopost:photopost_php_pro:4.0:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:a:photopost:photopost_php_pro:4.0:*:*:*:*:*:*:*
- cpe:2.3:a:photopost:photopost_php_pro:4.1:*:*:*:*:*:*:*
- cpe:2.3:a:photopost:photopost_php_pro:4.2:*:*:*:*:*:*:*
- cpe:2.3:a:photopost:photopost_php_pro:4.3:*:*:*:*:*:*:*
- cpe:2.3:a:photopost:photopost_php_pro:4.4:*:*:*:*:*:*:*
- cpe:2.3:a:photopost:photopost_php_pro:4.5:*:*:*:*:*:*:*
- cpe:2.3:a:photopost:photopost_php_pro:4.6:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.