QwikSec

Security Database

CVE

CWE

Training

CVE-2006-7193

Published: Apr 12, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

PHP remote file inclusion vulnerability in unit_test/test_cases.php in Smarty 2.6.1 allows remote attackers to execute arbitrary PHP code via a URL in the SMARTY_DIR parameter. NOTE: this issue is disputed by CVE and a third party because SMARTY_DIR is a constant

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

20061023 Smarty-2.6.1 Remote File Include Vulnerabilities

mailing-list

x_refsource_BUGTRAQ

vdb-entry

x_refsource_OSVDB

20061024 Re: Smarty-2.6.1 Remote File Include Vulnerabilities

mailing-list

x_refsource_BUGTRAQ

smarty-test-file-include(29739)

vdb-entry

x_refsource_XF

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.