← back
CVE-2006-4163

CVE-2006-4163

EPSS 4.0%
PHP remote file inclusion vulnerability in cls_fast_template.php in myWebland miniBloggie 1.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the fname parameter. NOTE: another researcher was unable to find a way to execute code after including it via a URL. CVE analysis as of 20060816 was inconclusive
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/28378unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://www.securityfocus.com/archive/1/442966/100/0/threadedhttp://www.securityfocus.com/archive/1/443160/100/0/threadedhttp://www.securityfocus.com/bid/19476