CVE-2006-5839
phpadventure 1.1-Alpha - Remote File Inclusion via _mygamefile Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2006-5839. PoCs published by HER0.
AI-analyzed exploit summary This exploit demonstrates a Remote File Inclusion (RFI) vulnerability in PHPAdventure CMS. The vulnerability arises from unsanitized user input in the `_mygamefile` parameter, allowing an attacker to include and execute remote malicious code.
Description
PHP remote file inclusion vulnerability in ad_main.php in PHPAdventure 1.1-Alpha and earlier allows remote attackers to execute arbitrary PHP code via a URL in the _mygamefile parameter.
Exploits (1)
This exploit demonstrates a Remote File Inclusion (RFI) vulnerability in PHPAdventure CMS. The vulnerability arises from unsanitized user input in the `_mygamefile` parameter, allowing an attacker to include and execute remote malicious code.