CVE-2006-7193 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2006-7193

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

PHP remote file inclusion vulnerability in unit_test/test_cases.php in Smarty 2.6.1 allows remote attackers to execute arbitrary PHP code via a URL in the SMARTY_DIR parameter. NOTE: this issue is disputed by CVE and a third party because SMARTY_DIR is a constant

Affected Software

Name	Vendor	Start Version	End Version
Smarty	Smarty	2.6.1 (including)	2.6.1 (including)

References

http://marc.info/?l=bugtraq\u0026m=116163668213491\u0026w=2
http://marc.info/?l=bugtraq\u0026m=116170769322920\u0026w=2
http://osvdb.org/31096
https://exchange.xforce.ibmcloud.com/vulnerabilities/29739
http://marc.info/?l=bugtraq\u0026m=116163668213491\u0026w=2
http://marc.info/?l=bugtraq\u0026m=116170769322920\u0026w=2
http://osvdb.org/31096
https://exchange.xforce.ibmcloud.com/vulnerabilities/29739