MidnightBSD

Advisories for myphp_cms

CVE-2006-3478 HIGH

PHP remote file inclusion vulnerability in styles/default/global_header.php in MyPHP CMS 0.3 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the domain parameter.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
myphp_cms myphp_cms 0.3
myphp_cms myphp_cms 0.3.1