CVE-2006-5252

2006-10-12T22:07:00
ID CVE-2006-5252
Type cve
Reporter cve@mitre.org
Modified 2008-09-05T21:11:00

Description

PHP remote file inclusion vulnerability in includes/core.lib.php in Webmedia Explorer 2.8.7 allows remote attackers to execute arbitrary PHP code via a URL in the path_include parameter. Successful exploitation requires that the application is incorrectly configured. To resolve, activate mod_rewrite and ensure that your web server processes the ".htaccess" file correctly.