CVE-2006-5667
published 2006-11-03CVE-2006-5667: Multiple PHP remote file inclusion vulnerabilities in P-Book 1.17 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the pb_lang…
PriorityP342high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
3.36%
87.2th percentile
Multiple PHP remote file inclusion vulnerabilities in P-Book 1.17 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the pb_lang parameter to (1) admin.php and (2) pbook.php.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| p-book | p-book | <= 1.17 | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
P-Book 1.17 admin.php pb_lang file inclusion (EDB-2691 / XFDB-29651)
vuldb·2026-04-26·CVSS 7.5
CVE-2006-5667 [HIGH] P-Book 1.17 admin.php pb_lang file inclusion (EDB-2691 / XFDB-29651)
A vulnerability, which was classified as critical, has been found in P-Book 1.17. The affected element is an unknown function of the file admin.php. The manipulation of the argument pb_lang leads to file inclusion.
This vulnerability is listed as CVE-2006-5667. The attack may be initiated remotely. In addition, an exploit is available.
GHSA
GHSA-gh5p-8fgw-9pgh: Multiple PHP remote file inclusion vulnerabilities in P-Book 1
ghsa_unreviewed·2022-05-01
CVE-2006-5667 [HIGH] GHSA-gh5p-8fgw-9pgh: Multiple PHP remote file inclusion vulnerabilities in P-Book 1
Multiple PHP remote file inclusion vulnerabilities in P-Book 1.17 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the pb_lang parameter to (1) admin.php and (2) pbook.php.
No detection rules found.
No writeups or analysis indexed.
http://secunia.com/advisories/22608http://securityreason.com/securityalert/1811http://www.securityfocus.com/archive/1/449106/100/200/threadedhttp://www.vupen.com/english/advisories/2006/4291https://exchange.xforce.ibmcloud.com/vulnerabilities/29651https://www.exploit-db.com/exploits/2691http://secunia.com/advisories/22608http://securityreason.com/securityalert/1811http://www.securityfocus.com/archive/1/449106/100/200/threadedhttp://www.vupen.com/english/advisories/2006/4291https://exchange.xforce.ibmcloud.com/vulnerabilities/29651https://www.exploit-db.com/exploits/2691
2006-11-03
Published