CVE-2006-3019

Name of the Vulnerable Software and Affected Versions phpCMS versions 1.1.7 through 1.2.1pl2

Description The issue allows remote attackers to execute arbitrary PHP code via a URL in the PHPCMS INCLUDEPATH parameter to various files in the phpCMS application, including files such as class.parser phpcms.php, class.session phpcms.php, class.edit phpcms.php, class.http indexer phpcms.php, class.cache phpcms.php, class.search phpcms.php, class.lib indexer universal phpcms.php, class.layout phpcms.php, parser/plugs/counter.php, and parser/parser.php.

Recommendations For phpCMS version 1.1.7, update to a version later than 1.1.7 to resolve the issue. For phpCMS version 1.2.1pl2, update to a version later than 1.2.1pl2 to resolve the issue. As a temporary workaround, consider restricting access to the PHPCMS INCLUDEPATH parameter to minimize the risk of exploitation.