CVE-2006-7046

Clan Manager Pro 1.1.0 - Remote Code Execution via rootpath Parameter

Title source: llm
STIX 2.1

Description

PHP remote file inclusion vulnerability in cmpro.intern/login.inc.php for Clan Manager Pro (CMPRO) 1.1.0 allows remote attackers to execute arbitrary PHP code via a URL in the rootpath parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

References (2)

Core 2
Core References
Exploit third-party-advisory x_refsource_secunia
http://secunia.com/advisories/20484
Exploit vdb-entry x_refsource_osvdb
http://www.osvdb.org/26224

Scores

EPSS 0.0197
EPSS Percentile 78.0%

Details

CWE
CWE-94
Status published
Products (1)
clan_manager_pro/clan_manager_pro 1.1.0
Published Feb 24, 2007
Tracked Since Feb 18, 2026