CVE-2006-5497 | Middlebury College Segue CMS up to 1.5.8 themesettings.inc.php themesdir file inclusion (EDB-2600 / Nessus ID 22922)
A vulnerability was found in Middlebury College Segue CMS up to 1.5.8. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file themesettings.inc.php. The manipulation of the argument themesdir results in file inclusion.
This vulnerability is cataloged as CVE-2006-5497. The attack may be launched remotely. Furthermore, there is an exploit available.