CVE-2006-5485 Information

Feb 14, 2021 cve

Description

Multiple PHP remote file inclusion vulnerabilities in SpeedBerg 1.2beta1 allow remote attackers to execute arbitrary PHP code via a URL in the SPEEDBERG_PATH parameter to (1) entrancePage.tpl.php (2) generalToolBox.tlb.php (3) myToolBox.tlb.php (4) scriplet.inc.php (5) simplePage.tpl.php (6) speedberg.class.php and (7) standardPage.tpl.php.

Reference

http://securityreason.com/securityalert/1762 http://www.attrition.org/pipermail/vim/2006-October/001091.html http://www.securityfocus.com/archive/1/449468/100/0/threaded http://www.securityfocus.com/bid/20670 https://exchange.xforce.ibmcloud.com/vulnerabilities/29699

Share on: