CVE-2006-4440 Information
Feb 14, 2021
cve
Description
PHP remote file inclusion vulnerability in main.php in Ay System Solutions CMS 2.6 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the path[ShowProcessHandle] parameter.
Reference
http://aysad.net/download/logs/WCSv2.7_upgrades.log http://secunia.com/advisories/21661 http://www.osvdb.org/28245 http://www.securityfocus.com/bid/19735 http://www.vupen.com/english/advisories/2006/3394 https://exchange.xforce.ibmcloud.com/vulnerabilities/28593 https://www.exploit-db.com/exploits/2263
Share on: