CVE-2006-5240

PHP remote file inclusion vulnerability in engine/require.php in Docmint 2.0 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the MY_ENV[BASE_ENGINE_LOC] parameter.
Configurations

Configuration 1 (hide)

cpe:2.3:a:docmint:docmint_cms:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2006-10-12 00:07

Updated : 2024-02-04 17:13


NVD link : CVE-2006-5240

Mitre link : CVE-2006-5240

CVE.ORG link : CVE-2006-5240


JSON object : View

Products Affected

docmint

  • docmint_cms