CVE-2006-4869
phpunity_postcard - Remote Code Execution via gallery_path Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2006-4869. PoCs published by Rivertam.
AI-analyzed exploit summary This is a writeup describing a Remote File Inclusion (RFI) vulnerability in phpunity.postcard. The exploit leverages the undefined $gallery_path variable to include arbitrary remote files, leading to potential remote code execution.
Description
PHP remote file inclusion vulnerability in phpunity-postcard.php in phpunity.postcard allows remote attackers to execute arbitrary PHP code via a URL in the gallery_path parameter.
Exploits (1)
This is a writeup describing a Remote File Inclusion (RFI) vulnerability in phpunity.postcard. The exploit leverages the undefined $gallery_path variable to include arbitrary remote files, leading to potential remote code execution.