CVE-2006-4604

Lanifex DMO <2.3 Beta - RCE

Title source: llm

Description

PHP remote file inclusion vulnerability in LFXlib/access_manager.php in Lanifex Database of Managed Objects (DMO) 2.3 Beta and earlier allows remote attackers to execute arbitrary PHP code via the _incMgr parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Kacper · perlwebappsphp
https://www.exploit-db.com/exploits/2280

References (3)

Scores

EPSS 0.0495
EPSS Percentile 89.7%

Details

Status published
Products (2)
lanifex/lanifex 2.2
lanifex/lanifex < 2.3_beta
Published Sep 07, 2006
Tracked Since Feb 18, 2026