CVE-2006-5427

2006-10-2017:00:00

mitre

www.cve.org

7.5 High

AI Score

Confidence

High

0.066 Low

EPSS

Percentile

93.8%

JSON

PHP remote file inclusion vulnerability in plugins/main.php in Php AMX 0.9.0, when register_globals is enabled or magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary PHP code via a URL in the plug_path parameter.

References

secunia.com/advisories/22455

www.securityfocus.com/bid/20601

www.vupen.com/english/advisories/2006/4088

exchange.xforce.ibmcloud.com/vulnerabilities/29649

www.exploit-db.com/exploits/2591