Unrated severityNVD Advisory· Published Aug 30, 2006· Updated Jun 16, 2026
CVE-2006-4451
CVE-2006-4451
Description
Direct static code injection vulnerability in CJ Tag Board 3.0 allows remote attackers to execute arbitrary PHP code via the (1) User-Agent HTTP header in tag.php, which is executed by all.php, and (2) the banned parameter in admin_index.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:cj_design:cj_tag_board:3.0:*:*:*:*:*:*:*
- Range: = 3.0
Patches
Vulnerability mechanics
References
4- secunia.com/advisories/21561nvdVendor Advisory
- secunia.com/secunia_research/2006-61/advisory/nvdVendor Advisory
- www.securityfocus.com/bid/19748nvd
- www.vupen.com/english/advisories/2006/3406nvd
News mentions
0No linked articles in our index yet.