CVE-2006-4594

PHP Advanced Transfer Manager <1.21 - RCE

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-4594. PoCs published by KinSize.

AI-analyzed exploit summary This exploit demonstrates a Remote File Inclusion (RFI) vulnerability in phpAtm <= v1.21 due to improper input validation in the 'include_location' parameter. The exploit allows an attacker to include and execute arbitrary remote PHP code by manipulating the parameter in multiple scripts (confirm.php, index.php, login.php).

Description

Multiple PHP remote file inclusion vulnerabilities in PHP Advanced Transfer Manager (phpAtm) 1.21 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the include_location parameter in (1) confirm.php or (2) login.php. NOTE: the include_location parameter to index.php is already covered by CVE-2005-1681.

Exploits (1)

exploitdb WORKING POC VERIFIED
by KinSize · textwebappsphp
https://www.exploit-db.com/exploits/2279

This exploit demonstrates a Remote File Inclusion (RFI) vulnerability in phpAtm <= v1.21 due to improper input validation in the 'include_location' parameter. The exploit allows an attacker to include and execute arbitrary remote PHP code by manipulating the parameter in multiple scripts (confirm.php, index.php, login.php).

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: phpAtm <= v1.21
No auth needed
Prerequisites: Remote PHP shell or malicious PHP script hosted on an attacker-controlled server · Network access to the vulnerable phpAtm application
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/19765
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/2279
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/28670

Scores

EPSS 0.0243
EPSS Percentile 82.0%

Details

Status published
Products (2)
bugada_andrea/php_advanced_transfer_manager 1.20
bugada_andrea/php_advanced_transfer_manager < 1.21
Published Sep 06, 2006
Tracked Since Feb 18, 2026