Security Advisory

CVE-2006-6213

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2006-12-01 01:00:00

Last updated 2024-08-07 20:19:34

Assigner mitre

State PUBLISHED

Description

index.php in PEGames uses the extract function to overwrite critical variables, which allows remote attackers to conduct PHP remote file inclusion attacks via the abs_url parameter, which is later extracted to overwrite a previously uncontrolled value.

← Browse all CVEs View on cve.org ↗