CVE-2006-6666

VerliAdmin <0.3 - RCE

Title source: llm

Description

PHP remote file inclusion vulnerability in index.php in VerliAdmin 0.3 and earlier allows remote authenticated users to execute arbitrary PHP code via a URL in the q parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Kacper · textwebappsphp
https://www.exploit-db.com/exploits/2944

References (4)

Scores

EPSS 0.0474
EPSS Percentile 89.2%

Classification

Status draft

Affected Products (1)

verliadmin/verliadmin < 0.3

Timeline

Published Dec 20, 2006
Tracked Since Feb 18, 2026