CVE Vulnerabilities

CVE-2006-5546

Published: Oct 26, 2006 | Modified: Oct 19, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5.1 MEDIUM
AV:N/AC:H/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

PHP remote file inclusion vulnerability in OTSCMS/OTSCMS.php in Open Tibia Server Content Management System (OTSCMS) 1.3.0 through 1.4.1 allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[config][otscms][directories][classes] parameter.

Affected Software

Name Vendor Start Version End Version
Otscms Otscms 1.3.3 1.3.3
Otscms Otscms 1.3.4 1.3.4
Otscms Otscms 1.3.0 1.3.0
Otscms Otscms 1.4.1 1.4.1

References