CVE-2006-5240
Docmint <2.0 - RCE
Title source: llmDescription
PHP remote file inclusion vulnerability in engine/require.php in Docmint 2.0 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the MY_ENV[BASE_ENGINE_LOC] parameter.
Exploits (1)
References (10)
Scores
EPSS
0.1706
EPSS Percentile
95.0%
Details
Status
published
Products (1)
docmint/docmint_cms
< 2.0
Published
Oct 12, 2006
Tracked Since
Feb 18, 2026