{ "schema_version": "1.4.0", "id": "GHSA-q54f-82f5-v4r4", "modified": "2025-04-09T03:32:40Z", "published": "2022-05-01T07:29:02Z", "aliases": [ "CVE-2006-5506" ], "details": "Multiple PHP remote file inclusion vulnerabilities in WiClear 0.10 allow remote attackers to execute arbitrary PHP code via the path parameter in (1) inc/prepend.inc.php, (2) inc/lib/boxes.lib.php, (3) inc/lib/tools.lib.php, (4) tools/trackback/index.php, and (5) tools/utf8conversion/index.php in admin/; and (6) prepend.inc.php, (7) lib/boxes.lib.php, and (8) lib/history.lib.php in inc/.", "severity": [], "affected": [], "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2006-5506" }, { "type": "WEB", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29720" }, { "type": "WEB", "url": "https://www.exploit-db.com/exploits/2624" }, { "type": "WEB", "url": "http://secunia.com/advisories/22547" }, { "type": "WEB", "url": "http://wiclear.free.fr" }, { "type": "WEB", "url": "http://wiclear.free.fr/?Download" }, { "type": "WEB", "url": "http://www.osvdb.org/29942" }, { "type": "WEB", "url": "http://www.osvdb.org/29943" }, { "type": "WEB", "url": "http://www.osvdb.org/29944" }, { "type": "WEB", "url": "http://www.osvdb.org/29945" }, { "type": "WEB", "url": "http://www.osvdb.org/29946" }, { "type": "WEB", "url": "http://www.osvdb.org/29947" }, { "type": "WEB", "url": "http://www.osvdb.org/29948" }, { "type": "WEB", "url": "http://www.osvdb.org/29949" }, { "type": "WEB", "url": "http://www.vupen.com/english/advisories/2006/4166" } ], "database_specific": { "cwe_ids": [ "CWE-94" ], "severity": "HIGH", "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2006-10-25T22:07:00Z" } }