Unrated severityNVD Advisory· Published Apr 21, 2006· Updated Jun 16, 2026
CVE-2006-1955
CVE-2006-1955
Description
PHP remote file inclusion vulnerability in authent.php4 in Nicolas Fischer (aka NFec) RechnungsZentrale V2 1.1.3, and possibly earlier versions, allows remote attackers to execute arbitrary PHP code via a URL in the rootpath parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:nfec.de:rechnungszentrale:v2_1.1.3:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:nfec.de:rechnungszentrale:v2_1.1.3:*:*:*:*:*:*:*
- (no CPE)range: <=1.1.3
Patches
Vulnerability mechanics
References
8- www.g-0.org/code/rz2-adv.htmlnvdExploitURL Repurposed
- www.securityfocus.com/bid/17589nvdExploit
- archives.neohapsis.com/archives/bugtraq/2006-04/0384.htmlnvd
- secunia.com/advisories/19728nvd
- www.osvdb.org/24753nvd
- www.vupen.com/english/advisories/2006/1425nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/25912nvd
- www.exploit-db.com/exploits/1699nvd
News mentions
0No linked articles in our index yet.