CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Contenido: >> Contendio >> 4.6.15 Security Vulnerabilities

CVE-2006-5380

Remote file inclusion vulnerability in Contenido CMS allows remote attackers to execute arbitrary PHP code via a URL in the contenido_path parameter to (1) cms/dbfs.php or (2) cms/front_content.php. NOTE: CVE disputes this issue for version 4.6.15, because $contenido_path is set to a static value

CVSS Score

7.5

EPSS Score

0.013

Published

2006-10-18

Page 1

Vulnerabilities

Vulnerable Software

Contenido: >> Contendio >> 4.6.15 Security Vulnerabilities

Products

Pricing

Contact Us