Unrated severityNVD Advisory· Published Jun 9, 2006· Updated Apr 16, 2026
CVE-2006-2922
CVE-2006-2922
Description
Multiple PHP remote file inclusion vulnerabilities in MiraksGalerie 2.62 allow remote attackers to execute arbitrary PHP code via a URL in the (1) g_pcltar_lib_dir parameter in (a) pcltar.lib.php when register_globals is enabled, and (2) listconfigfile[] parameter in (b) galsecurity.lib.php and (c) galimage.lib.php.
Affected products
1- cpe:2.3:a:miraks:miraksgalerie:2.62:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
9- secunia.com/advisories/20475nvdVendor Advisory
- securitytracker.com/idnvd
- www.osvdb.org/26194nvd
- www.osvdb.org/26195nvd
- www.osvdb.org/26196nvd
- www.securityfocus.com/archive/1/436333/100/0/threadednvd
- www.securityfocus.com/bid/18313nvd
- www.vupen.com/english/advisories/2006/2187nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/27010nvd
News mentions
0No linked articles in our index yet.