7.5 High
AI Score
Confidence
High
0.032 Low
EPSS
Percentile
91.2%
PHP remote file inclusion vulnerability in engine/oldnews.inc.php in CM68 News 12.02.06 allows remote attackers to execute arbitrary PHP code via a URL in the addpath parameter.
cm68.de/?cm68news_download
secunia.com/advisories/23326
www.securityfocus.com/bid/21499
www.vupen.com/english/advisories/2006/4911
exchange.xforce.ibmcloud.com/vulnerabilities/30785
www.exploit-db.com/exploits/2897