CVE-2006-5097 Information

Description

LICENSE README.md cvefilelist cvelist nvdcve nvdpages.sh scripts test-CVE-2017-1882.markdown test-CVE-2017-18822.markdown tmpvendorlinks DISPUTED LICENSE README.md cvefilelist cvelist nvdcve nvdpages.sh scripts test-CVE-2017-1882.markdown test-CVE-2017-18822.markdown tmpvendorlinks PHP remote file inclusion vulnerability in index.php in net2ftp possibly 0.1 through 0.62 allows remote attackers to execute arbitrary PHP code via a URL in the application_rootdir parameter. NOTE: this issue has been disputed by a third party researcher CVE and the vendor. The vendor says \the variable is set in settings.inc.php so this is not a vulnerability.\

Reference

http://securityreason.com/securityalert/1655 http://www.attrition.org/pipermail/vim/2006-October/001076.html http://www.attrition.org/pipermail/vim/2006-October/001077.html http://www.net2ftp.org/forums/viewtopic.php?pid=6676 http://www.net2ftp.org/forums/viewtopic.php?pid=6687 http://www.net2ftp.org/forums/viewtopic.php?pid=6689 http://www.securityfocus.com/archive/1/447156/100/0/threaded http://www.securityfocus.com/archive/1/447535/100/0/threaded http://www.securityfocus.com/archive/1/447916/100/0/threaded http://www.securityfocus.com/archive/1/448037/100/0/threaded https://exchange.xforce.ibmcloud.com/vulnerabilities/29203