CVE-2006-4115
PgMarket 2.2.3 - RCE
Title source: llmDescription
PHP remote file inclusion vulnerability in common.inc.php in PgMarket 2.2.3, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via the CFG[libdir] parameter.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Mehmet Ince · textwebappsphp
https://www.exploit-db.com/exploits/2154
References (5)
Scores
EPSS
0.0255
EPSS Percentile
85.3%
Classification
Status
draft
Affected Products (1)
e-zest_solutions/pgmarket
Timeline
Published
Aug 14, 2006
Tracked Since
Feb 18, 2026