CVE-2006-5636 | Vulnerability Database | Aqua Security

PHP remote file inclusion vulnerability in common.php in Simple Website Software (SWS) 0.99 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the SWSDIR parameter.

Affected Software

Name	Vendor	Start Version	End Version
Simple_website_software	Sws	*	0.99 (including)

References

http://secunia.com/advisories/22618
http://securityreason.com/securityalert/1799
http://www.osvdb.org/30131
http://www.securityfocus.com/archive/1/450050/100/0/threaded
http://www.securityfocus.com/bid/20787
http://www.vupen.com/english/advisories/2006/4262
https://exchange.xforce.ibmcloud.com/vulnerabilities/29861
https://www.exploit-db.com/exploits/2673
http://secunia.com/advisories/22618
http://securityreason.com/securityalert/1799
http://www.osvdb.org/30131
http://www.securityfocus.com/archive/1/450050/100/0/threaded
http://www.securityfocus.com/bid/20787
http://www.vupen.com/english/advisories/2006/4262
https://exchange.xforce.ibmcloud.com/vulnerabilities/29861
https://www.exploit-db.com/exploits/2673

NVD	https://nvd.nist.gov/vuln/detail/CVE-2006-5636
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html