CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Sh-News: >> Sh-News >> 0.93 Security Vulnerabilities

CVE-2006-6801

PHP remote file inclusion vulnerability in misc.php in SH-News 0.93, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via the news_cfg[path] parameter.

CVSS Score

6.8

EPSS Score

0.029

Published

2006-12-28

Page 1

Vulnerabilities

Vulnerable Software

Sh-News: >> Sh-News >> 0.93 Security Vulnerabilities

Products

Pricing

Contact Us