CVE-2006-5093
Tagmin Control Center 2.1.B Build 2 - Remote Code Execution via Page Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2006-5093. PoCs published by Kernel-32.
AI-analyzed exploit summary The exploit demonstrates a Remote File Include (RFI) vulnerability in Tagmin Control Center 2.1.B. The vulnerable code includes a user-controlled parameter 'page' without proper sanitization, allowing an attacker to include arbitrary remote files. The provided URL example shows how to exploit this to include a shell.
Description
PHP remote file inclusion vulnerability in index.php in Tagmin Control Center in TagIt! Tagboard 2.1.B Build 2 allows remote attackers to execute arbitrary PHP code via a URL in the page parameter.
Exploits (1)
The exploit demonstrates a Remote File Include (RFI) vulnerability in Tagmin Control Center 2.1.B. The vulnerable code includes a user-controlled parameter 'page' without proper sanitization, allowing an attacker to include arbitrary remote files. The provided URL example shows how to exploit this to include a shell.