CVE-2006-5623
published 2006-10-31CVE-2006-5623: PHP remote file inclusion vulnerability in ip.inc.php in Electronic Engineering Tool (EE Tool) 0.4-1 and earlier allows remote attackers to execute arbitrary…
PriorityP344high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
2.33%
81.4th percentile
PHP remote file inclusion vulnerability in ip.inc.php in Electronic Engineering Tool (EE Tool) 0.4-1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the cgipath parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ee_tool | ee_tool | <= 0.4_1 | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
EE Tool up to 0.4-1 ip.inc.php cgipath file inclusion (EDB-2667 / XFDB-29884)
vuldb·2026-04-26·CVSS 7.5
CVE-2006-5623 [HIGH] EE Tool up to 0.4-1 ip.inc.php cgipath file inclusion (EDB-2667 / XFDB-29884)
A vulnerability was found in EE Tool up to 0.4-1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file ip.inc.php. Such manipulation of the argument cgipath leads to file inclusion.
This vulnerability is traded as CVE-2006-5623. The attack may be launched remotely. Furthermore, there is an exploit available.
GHSA
GHSA-jj79-5gh8-9xq6: PHP remote file inclusion vulnerability in ip
ghsa_unreviewed·2022-05-01
CVE-2006-5623 [HIGH] GHSA-jj79-5gh8-9xq6: PHP remote file inclusion vulnerability in ip
PHP remote file inclusion vulnerability in ip.inc.php in Electronic Engineering Tool (EE Tool) 0.4-1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the cgipath parameter.
No detection rules found.
No writeups or analysis indexed.
http://www.securityfocus.com/bid/20780http://www.vupen.com/english/advisories/2006/4231https://exchange.xforce.ibmcloud.com/vulnerabilities/29884https://www.exploit-db.com/exploits/2667http://www.securityfocus.com/bid/20780http://www.vupen.com/english/advisories/2006/4231https://exchange.xforce.ibmcloud.com/vulnerabilities/29884https://www.exploit-db.com/exploits/2667
2006-10-31
Published