CVE-2006-5307
AFGB GUESTBOOK 2.2 - Remote File Inclusion via Htmls Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2006-5307. PoCs published by mdx.
AI-analyzed exploit summary This exploit demonstrates a remote file inclusion vulnerability in afgb GUESTBOOK V2.2. The vulnerability allows an attacker to include arbitrary remote files via the 'Htmls' parameter in multiple PHP scripts.
Description
Multiple PHP remote file inclusion vulnerabilities in AFGB GUESTBOOK 2.2 allow remote attackers to execute arbitrary PHP code via a URL in the Htmls parameter in (1) add.php, (2) admin.php, (3) look.php, or (4) re.php.
Exploits (1)
This exploit demonstrates a remote file inclusion vulnerability in afgb GUESTBOOK V2.2. The vulnerability allows an attacker to include arbitrary remote files via the 'Htmls' parameter in multiple PHP scripts.