Vulnerabilities > CVE-2006-5523 - Remote File Include vulnerability in Ez-Ticket 0.0.1

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
ez-ticket
exploit available
NVD
Published: 2006-10-26
Updated: 2017-10-19

Summary

PHP remote file inclusion vulnerability in common.php in EZ-Ticket 0.0.1 allows remote attackers to execute arbitrary PHP code via a URL in the ezt_root_path parameter.

Vulnerable Configurations

Part Description Count
Application
Ez-Ticket
1

Exploit-Db

descriptionEZ-Ticket 0.0.1 (common.php) Remote File Include Vulnerability. CVE-2006-5523. Webapps exploit for php platform
fileexploits/php/webapps/2620.txt
idEDB-ID:2620
last seen2016-01-31
modified2006-10-22
platformphp
port
published2006-10-22
reporterthe master
sourcehttps://www.exploit-db.com/download/2620/
titleEZ-Ticket 0.0.1 common.php Remote File Include Vulnerability
typewebapps

References