Vulnerability in Allmyguests_project Allmyguests

CVE-2006-4993

Multiple PHP remote file inclusion vulnerabilities in AllMyGuests 0.4.1 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the _AMGconfig[cfg_serverpath] parameter in (1) modules/AllMyGuests/signin.php (aka the N…

EPSS: 0.039 (88.9th percentile) — read the EPSS interpretation.

Affected products

References

  • cve@mitre.org (x_refsource_SECUNIA, Broken Link, third-party-advisory)
  • cve@mitre.org (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_BID)
  • cve@mitre.org (VDB Entry, vdb-entry, x_refsource_XF)
  • cve@mitre.org (VDB Entry, Third Party Advisory, exploit, x_refsource_EXPLOIT-DB)
  • cve@mitre.org (Permissions Required, vdb-entry, x_refsource_VUPEN)