CVE-2006-4723

RaidenHTTPD 1.1.49 - RCE

Title source: llm

Description

PHP remote file inclusion vulnerability in raidenhttpd-admin/slice/check.php in RaidenHTTPD 1.1.49, when register_globals and WebAdmin is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the SoftParserFileXml parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED
by rgod · phpremotewindows
https://www.exploit-db.com/exploits/2328

References (5)

Scores

EPSS 0.0782
EPSS Percentile 92.0%

Details

Status published
Products (3)
raidenhttpd/raidenhttpd 1.1.32
raidenhttpd/raidenhttpd 1.1.47
raidenhttpd/raidenhttpd < 1.1.49
Published Sep 12, 2006
Tracked Since Feb 18, 2026