CVE-2006-5257 Information

Description

PHP remote file inclusion vulnerability in modules/forum/include/config.php in Ciamos Content Management System (CMS) 0.9.6b and earlier allows remote attackers to execute arbitrary PHP code via a URL in the module_cache_path parameter.

Reference

http://www.securityfocus.com/bid/20403 https://exchange.xforce.ibmcloud.com/vulnerabilities/29398 https://www.exploit-db.com/exploits/2489