CVE-2006-5637
published 2006-11-01CVE-2006-5637: PHP remote file inclusion vulnerability in faq_reply.php in Faq Administrator 2.1b allows remote attackers to execute arbitrary PHP code via a URL in the email…
PriorityP343high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
3.36%
87.2th percentile
PHP remote file inclusion vulnerability in faq_reply.php in Faq Administrator 2.1b allows remote attackers to execute arbitrary PHP code via a URL in the email parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| faq_administrator | faq_administrator | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
Faq Administrator 2.1b faq_reply.php email file inclusion (EDB-2678 / XFDB-29868)
vuldb·2026-04-26·CVSS 7.5
CVE-2006-5637 [HIGH] Faq Administrator 2.1b faq_reply.php email file inclusion (EDB-2678 / XFDB-29868)
A vulnerability was found in Faq Administrator 2.1b and classified as critical. This vulnerability affects unknown code of the file faq_reply.php. Executing a manipulation of the argument email can lead to file inclusion.
This vulnerability appears as CVE-2006-5637. The attack may be performed from remote. In addition, an exploit is available.
GHSA
GHSA-7c25-6jpr-v6h3: PHP remote file inclusion vulnerability in faq_reply
ghsa_unreviewed·2022-05-01
CVE-2006-5637 [HIGH] GHSA-7c25-6jpr-v6h3: PHP remote file inclusion vulnerability in faq_reply
PHP remote file inclusion vulnerability in faq_reply.php in Faq Administrator 2.1b allows remote attackers to execute arbitrary PHP code via a URL in the email parameter.
No detection rules found.
No writeups or analysis indexed.
http://secunia.com/advisories/22621http://www.attrition.org/pipermail/vim/2006-October/001100.htmlhttp://www.osvdb.org/30115http://www.securityfocus.com/bid/20796http://www.vupen.com/english/advisories/2006/4254https://exchange.xforce.ibmcloud.com/vulnerabilities/29868https://www.exploit-db.com/exploits/2678http://secunia.com/advisories/22621http://www.attrition.org/pipermail/vim/2006-October/001100.htmlhttp://www.osvdb.org/30115http://www.securityfocus.com/bid/20796http://www.vupen.com/english/advisories/2006/4254https://exchange.xforce.ibmcloud.com/vulnerabilities/29868https://www.exploit-db.com/exploits/2678
2006-11-01
Published