RSS   Vulnerabilities for 'Docmint cms'   RSS

2006-10-11
 
CVE-2006-5240

CWE-Other
 

 
PHP remote file inclusion vulnerability in engine/require.php in Docmint 2.0 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the MY_ENV[BASE_ENGINE_LOC] parameter.

 

 >>> Vendor: Docmint 2 Products
Docmint cms
Docmint


Copyright 2024, cxsecurity.com

 

Back to Top