CVE-2006-6765 Information

Feb 14, 2021 cve

Description

Multiple PHP file inclusion vulnerabilities in src/admin/pt_upload.php in Pagetool 1.07 allow remote attackers to execute arbitrary PHP code via (1) a local filename or FTP/share URI in the config_file parameter or (2) a URL in the ptconf[src] parameter.

Reference

http://secunia.com/advisories/23508 http://www.vupen.com/english/advisories/2006/5163 https://www.exploit-db.com/exploits/3000

Share on: