Back to search
CVE-2006-5678
Published: Nov 3, 2006
Modified: Jan 17, 2025
PUBLISHED
Description
PHP remote file inclusion vulnerability in common/visiteurs/include/library.inc.php in J-Pierre DEZELUS Les Visiteurs 2.0.1, as used in phpMyConferences (phpMyConference) 8.0.2 and possibly other products, allows remote attackers to execute arbitrary PHP code via a URL in the lvc_modules_dir parameter. NOTE: CVE disputes this vulnerability, because the inclusion occurs in a function that is not called during a direct request to library.inc.php
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
phpmyconferences-library-file-include(29919)
vdb-entry
x_refsource_XF
20061031 phpMyConferences <= 8.0.2 Remote File Inclusion
mailing-list
x_refsource_BUGTRAQ
20061103 Re: phpMyConferences <= 8.0.2 Remote File Inclusion
mailing-list
x_refsource_BUGTRAQ
1810
third-party-advisory
x_refsource_SREASON
20061102 CVE dispute - phpMyConferences RFI
mailing-list
x_refsource_VIM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now