Vulnerabilities > CVE-2006-4418 - Local File Include vulnerability in Wikepage 2006.2/2006.2A
Attack vector
NETWORK Attack complexity
HIGH Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
NONE Summary
Directory traversal vulnerability in index.php for Wikepage 2006.2a Opus 10 allows remote attackers to include arbitrary local files via the lng parameter, as demonstrated by inserting PHP code into a log file.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
Exploit-Db
| description | Wikepage Opus 10. CVE-2006-4418. Webapps exploit for php platform |
| file | exploits/php/webapps/2252.pl |
| id | EDB-ID:2252 |
| last seen | 2016-01-31 |
| modified | 2006-08-24 |
| platform | php |
| port | |
| published | 2006-08-24 |
| reporter | Hessam-x |
| source | https://www.exploit-db.com/download/2252/ |
| title | Wikepage Opus 10 <= 2006.2a lng - Remote Command Execution Exploit |
| type | webapps |