Unrated severityNVD Advisory· Published Aug 28, 2006· Updated Apr 16, 2026

CVE-2006-4418

Description

Directory traversal vulnerability in index.php for Wikepage 2006.2a Opus 10 allows remote attackers to include arbitrary local files via the lng parameter, as demonstrated by inserting PHP code into a log file.

Affected products

Wikepage/Wikepage2 versions
cpe:2.3:a:wikepage:wikepage:2006.2:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:wikepage:wikepage:2006.2:*:*:*:*:*:*:*
- cpe:2.3:a:wikepage:wikepage:2006.2a:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/21542nvdVendor Advisory
www.osvdb.org/28177nvd
www.securityfocus.com/bid/19694nvd
www.vupen.com/english/advisories/2006/3386nvd
exchange.xforce.ibmcloud.com/vulnerabilities/28555nvd
www.exploit-db.com/exploits/2252nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.010
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000