PHP remote file inclusion vulnerability in manager/frontinc/prepend.php for Plume 1.0.3 allows remote malicious users to execute arbitrary code via a URL in the _PX_config[manager_path] parameter. NOTE: this is a different executable and affected version than CVE-2006-0725.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
plume-cms plume cms 1.0.3 |