CVE-2006-5410

2006-10-20T14:07:00
ID CVE-2006-5410
Type cve
Reporter cve@mitre.org
Modified 2018-10-17T21:42:00

Description

PHP remote file inclusion vulnerability in templates/tmpl_dfl/scripts/index.php in BoonEx Dolphin 5.2 allows remote attackers to execute arbitrary PHP code via a URL in the dir[inc] parameter. NOTE: it is possible that this issue overlaps CVE-2006-4189. Successful exploitation requires that "register globals" is enabled and that "magic quotes" is disabled.