Vulnerabilities > CVE-2006-4077 - Unspecified vulnerability in Comet Webfile Manager

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
comet
exploit available

Summary

PHP remote file inclusion vulnerability in CheckUpload.php in Vincenzo Valvano Comet WebFileManager (CWFM) 0.9.1, and possibly earlier, allows remote attackers to execute arbitrary PHP code via a URL in the Language parameter.

Vulnerable Configurations

Part Description Count
Application
Comet
1

Exploit-Db

descriptionCwfm <= 0.9.1 (Language) Remote File Inclusion Vulnerability. CVE-2006-4077. Webapps exploit for php platform
idEDB-ID:2151
last seen2016-01-31
modified2006-08-08
published2006-08-08
reporterPhilipp Niedziela
sourcehttps://www.exploit-db.com/download/2151/
titleCwfm <= 0.9.1 Language Remote File Inclusion Vulnerability