Security Advisory

CVE-2006-5816

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2006-11-08 23:00:00

Last updated 2024-08-07 20:04:55

Assigner mitre

State PUBLISHED

Description

Multiple PHP remote file inclusion vulnerabilities in Dmitry Sheiko Business Card Web Builder (BCWB) 2.5 allow remote attackers to execute arbitrary PHP code via a URL in the root_path_admin parameter to (1) /include/startup.inc.php, (2) dcontent/default.css.php, or (3) system/default.css.php, different vectors than CVE-2006-4946.

← Browse all CVEs View on cve.org ↗