Key Information Vulnerability Type: Remote File Inclusion Affected Software: APC ActionApps CMS 2.8.1 CVE ID: 2006-2686 Release Date: 2006-05-25 Author: Kacper Platform: PHP Vulnerability Description APC ActionApps CMS version 2.8.1 is affected by a remote file inclusion vulnerability. Attackers can exploit this vulnerability by crafting malicious requests to achieve remote code execution. Exploitable Files and Example URLs Example URL: Additional Information All files in the folder contain statements. The file uses on line 79. All files in the folder are exploitable. Vulnerability discovered by Kacper (Rahim). Contact: kacper1964@yahoo.pl.