VYPR
Unrated severityNVD Advisory· Published Jun 1, 2006· Updated Jun 16, 2026

CVE-2006-2745

CVE-2006-2745

Description

Multiple PHP remote file inclusion vulnerabilities in F@cile Interactive Web 0.8.5 and earlier, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the (1) pathfile parameter in (a) p-editpage.php and (b) p-editbox.php, and the (2) mytheme and (3) myskin parameters in multiple "p-themes" index.inc.php files including (c) lowgraphic, (d) classic, (e) puzzle, (f) simple, and (g) ciao.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • cpe:2.3:a:facile_interactive_web:facile_interactive_web:*:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:facile_interactive_web:facile_interactive_web:*:*:*:*:*:*:*:*range: <=0.8.5
    • cpe:2.3:a:facile_interactive_web:facile_interactive_web:0.8.41:*:*:*:*:*:*:*
    • (no CPE)range: <=0.8.5

Patches

Vulnerability mechanics

References

12

News mentions

0

No linked articles in our index yet.