CVE-2006-2871
CVE-2006-2871
PHP remote file inclusion vulnerability in include/common.php in CyBoards PHP Lite 1.25 allows remote attackers to execute arbitrary PHP code via a URL in the script_path parameter. NOTE: CVE disputes this issue, since $script_path is set to a constant value
Affected products
n/a · n/apublic PoCs found — 1
exploitdbwww.exploit-db.com/exploits/27970unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://securityreason.com/securityalert/1051http://securitytracker.com/id?1016225https://exchange.xforce.ibmcloud.com/vulnerabilities/26962http://www.attrition.org/pipermail/vim/2007-April/001510.htmlhttp://www.osvdb.org/26596http://www.securityfocus.com/archive/1/435977/100/0/threadedhttp://www.securityfocus.com/bid/18272