CVE-2006-4898

2006-09-1922:00:00

mitre

www.cve.org

AI Score

7.6

Confidence

High

EPSS

0.051

Percentile

93.0%

JSON

PHP remote file inclusion vulnerability in include/phpxd/phpXD.php in guanxiCRM 0.9.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the appconf[rootpath] parameter.

References

www.securityfocus.com/bid/20071

exchange.xforce.ibmcloud.com/vulnerabilities/28994

www.exploit-db.com/exploits/2381