Lucene search
MitreCVELIST:CVE-2006-0725HistoryFeb 16, 2006 - 11:00 a.m.
CVE-2006-0725
2006-02-1611:00:00
mitre
www.cve.org
2
PHP remote file inclusion vulnerability in prepend.php in Plume CMS 1.0.2, when register_globals is enabled, allows remote attackers to include arbitrary files via a URL in the _PX_config[manager_path] parameter. NOTE: this is a different executable and affected version than CVE-2006-2645.
References
plume-cms.net/news/77-Security-Notice-Please-Update-Your-Prependphp-File
secunia.com/advisories/18883
securitytracker.com/id?1015624
www.osvdb.org/23204
www.securityfocus.com/bid/16662
www.vupen.com/english/advisories/2006/0599
exchange.xforce.ibmcloud.com/vulnerabilities/24697
exchange.xforce.ibmcloud.com/vulnerabilities/27699
Related
prion
prion
Remote file inclusion
2006-05-30 10:02:00
Remote file inclusion
2006-02-16 11:02:00
nvd
nvd
exploitdb
exploitdb
Plume CMS 1.0.3 - 'manager_path' Remote File Inclusion
2006-05-26 00:00:00
cve
cve
cvelist
cvelist
checkpoint_advisories
checkpoint_advisories
openvas
openvas
Plume CMS <= 1.0.2 Remote File Inclusion Vulnerability
2006-03-26 00:00:00
Plume CMS <= 1.0.2 Remote File Inclusion Vulnerability
2006-03-26 00:00:00
nessus
nessus
Plume CMS < 1.0.3 Remote File Inclusion
2006-02-23 00:00:00