Unrated severityNVD Advisory· Published May 31, 2006· Updated Apr 16, 2026
CVE-2006-2686
CVE-2006-2686
Description
PHP remote file inclusion vulnerabilities in ActionApps 2.8.1 allow remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[AA_INC_PATH] parameter in (1) cached.php3, (2) cron.php3, (3) discussion.php3, (4) filldisc.php3, (5) filler.php3, (6) fillform.php3, (7) go.php3, (8) hiercons.php3, (9) jsview.php3, (10) live_checkbox.php3, (11) offline.php3, (12) post2shtml.php3, (13) search.php3, (14) slice.php3, (15) sql_update.php3, (16) view.php3, (17) multiple files in the (18) admin/ folder, (19) includes folder, and (20) modules/ folder.
Affected products
1- cpe:2.3:a:actionapps:actionapps:2.8.1:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
61- secunia.com/advisories/20299nvdExploitVendor Advisory
- www.osvdb.org/27253nvd
- www.osvdb.org/27254nvd
- www.osvdb.org/27256nvd
- www.osvdb.org/27257nvd
- www.osvdb.org/27258nvd
- www.osvdb.org/27259nvd
- www.osvdb.org/27260nvd
- www.osvdb.org/27261nvd
- www.osvdb.org/27262nvd
- www.osvdb.org/27263nvd
- www.osvdb.org/27264nvd
- www.osvdb.org/27265nvd
- www.osvdb.org/27266nvd
- www.osvdb.org/27267nvd
- www.osvdb.org/27268nvd
- www.osvdb.org/27269nvd
- www.osvdb.org/27270nvd
- www.osvdb.org/27271nvd
- www.osvdb.org/27272nvd
- www.osvdb.org/27273nvd
- www.osvdb.org/27274nvd
- www.osvdb.org/27275nvd
- www.osvdb.org/27276nvd
- www.osvdb.org/27277nvd
- www.osvdb.org/27278nvd
- www.osvdb.org/27279nvd
- www.osvdb.org/27280nvd
- www.osvdb.org/27281nvd
- www.osvdb.org/27282nvd
- www.osvdb.org/27283nvd
- www.osvdb.org/27284nvd
- www.osvdb.org/27285nvd
- www.osvdb.org/27286nvd
- www.osvdb.org/27287nvd
- www.osvdb.org/27288nvd
- www.osvdb.org/27289nvd
- www.osvdb.org/27290nvd
- www.osvdb.org/27291nvd
- www.osvdb.org/27292nvd
- www.osvdb.org/27293nvd
- www.osvdb.org/27294nvd
- www.osvdb.org/27295nvd
- www.osvdb.org/27296nvd
- www.osvdb.org/27297nvd
- www.osvdb.org/27298nvd
- www.osvdb.org/27299nvd
- www.osvdb.org/27300nvd
- www.osvdb.org/27301nvd
- www.osvdb.org/27302nvd
- www.osvdb.org/27303nvd
- www.osvdb.org/27304nvd
- www.osvdb.org/27305nvd
- www.osvdb.org/27306nvd
- www.osvdb.org/27308nvd
- www.osvdb.org/27309nvd
- www.osvdb.org/27310nvd
- www.securityfocus.com/bid/19133nvd
- www.vupen.com/english/advisories/2006/1997nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/26776nvd
- www.exploit-db.com/exploits/1829nvd
News mentions
0No linked articles in our index yet.