Unrated severityNVD Advisory· Published Aug 17, 2006· Updated Jun 16, 2026
CVE-2006-4209
CVE-2006-4209
Description
PHP remote file inclusion vulnerability in install3.php in WEBInsta Mailing List Manager 1.3e allows remote attackers to execute arbitrary PHP code via a URL in the cabsolute_path parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:webinsta:mailing_list_manager:1.3e:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:webinsta:mailing_list_manager:1.3e:*:*:*:*:*:*:*
- (no CPE)range: = 1.3e
Patches
Vulnerability mechanics
References
6- securityreason.com/securityalert/1404nvd
- www.bb-pcsecurity.de/Websecurity/311/org/WEBInsta_Mailing_list_manager_%28cabsolute_path%29_1.3e_RFI.htmnvd
- www.securityfocus.com/archive/1/442983/100/0/threadednvd
- www.securityfocus.com/bid/19477nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/28340nvd
- www.exploit-db.com/exploits/2171nvd
News mentions
0No linked articles in our index yet.