CVE-2006-5252

PHP remote file inclusion vulnerability in includes/core.lib.php in Webmedia Explorer 2.8.7 allows remote attackers to execute arbitrary PHP code via a URL in the path_include parameter.

Referenced by CVEs: CVE-2007-4948
Score5.1
Access VectorNETWORK
Access ComplexityHIGH
AuthenticationNONE
Confidentiality ImpactPARTIAL
Integrity ImpactPARTIAL
Availability ImpactPARTIAL
Published2006-10-12 06:07:00.000-04
Last Modified2008-09-05 05:11:48.000-04

Vulnerable Software List

VendorProductVersions
Webmedia Explorer Webmedia Explorer 2.8.7

References

SourceLink
MISChttp://www.rahim.webd.pl/exploity/Exploits/96.txt
BID20421