← back
CVE-2006-5427

CVE-2006-5427

EPSS 2.9%
PHP remote file inclusion vulnerability in plugins/main.php in Php AMX 0.9.0, when register_globals is enabled or magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary PHP code via a URL in the plug_path parameter.
Affected products
n/a · n/a
public PoCs found1
cve_referencewww.exploit-db.com/exploits/2591unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/22455https://exchange.xforce.ibmcloud.com/vulnerabilities/29649https://www.exploit-db.com/exploits/2591http://www.securityfocus.com/bid/20601http://www.vupen.com/english/advisories/2006/4088