CVE-2006-5253

PHP remote file inclusion vulnerability in strload.php in Dayana Networks phpOnline (aka PHP-Online) 2.1 allows remote attackers to execute arbitrary PHP code via a URL in the LangFile parameter.

Score7.5
Access VectorNETWORK
Access ComplexityLOW
AuthenticationNONE
Confidentiality ImpactPARTIAL
Integrity ImpactPARTIAL
Availability ImpactPARTIAL
Published2006-10-12 06:07:00.000-04
Last Modified2017-07-19 09:33:38.000-04

Vulnerable Software List

VendorProductVersions
Dayana Networks Phponline 2.1

References

SourceLink
BUGTRAQ20061005 phponline <= (LangFile) Remote File Inclusion Exploit
SREASON1721
XFphponline-index-file-include(29382)