Unrated severityNVD Advisory· Published Feb 10, 2006· Updated Apr 16, 2026

CVE-2006-0628

Description

myquiz.pl in Dale Ray MyQuiz 1.01 allows remote attackers to execute arbitrary commands via shell metacharacters in the URL, which are not properly handled as part of the PATH_INFO environment variable.

Affected products

Dale Ray/Myquiz
cpe:2.3:a:dale_ray:myquiz:1.01:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.corantodemo.net/coranto/viewnews.cginvdPatch
www.evuln.com/vulns/57/summary.htmlnvdExploitPatchVendor Advisory
attrition.org/pipermail/vim/2006-February/000537.htmlnvd
secunia.com/advisories/18737nvd
securityreason.com/securityalert/409nvd
www.osvdb.org/22925nvd
www.securityfocus.com/archive/1/423921/100/0/threadednvd
www.securityfocus.com/archive/1/424266/100/0/threadednvd
www.vupen.com/english/advisories/2006/0443nvd
exchange.xforce.ibmcloud.com/vulnerabilities/24501nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.023
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000