CVE-2006-5257

Ciamos CMS <0.9.6b - RCE

Title source: llm

Description

PHP remote file inclusion vulnerability in modules/forum/include/config.php in Ciamos Content Management System (CMS) 0.9.6b and earlier allows remote attackers to execute arbitrary PHP code via a URL in the module_cache_path parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Kacper · perlwebappsphp
https://www.exploit-db.com/exploits/2489

References (3)

Scores

EPSS 0.0495
EPSS Percentile 89.7%

Details

Status published
Products (1)
ciamos/ciamos_cms < 0.9.6b
Published Oct 12, 2006
Tracked Since Feb 18, 2026