CVE-2006-4373
pSlash 0.70 - RCE
Title source: llmDescription
PHP remote file inclusion vulnerability in modules/visitors2/include/config.inc.php in pSlash 0.70 allows remote attackers to execute arbitrary PHP code via a URL in the lvc_include_dir parameter.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Mehmet Ince · textwebappsphp
https://www.exploit-db.com/exploits/2249
References (7)
Scores
EPSS
0.1218
EPSS Percentile
93.7%
Classification
Status
draft
Affected Products (1)
derek_leung/pslash
Timeline
Published
Aug 26, 2006
Tracked Since
Feb 18, 2026