Unrated severityNVD Advisory· Published Sep 13, 2006· Updated Jun 16, 2026
CVE-2006-4750
CVE-2006-4750
Description
PHP remote file inclusion vulnerability in openi-admin/base/fileloader.php in OPENi-CMS 1.0.1, and possibly earlier, allows remote attackers to execute arbitrary PHP code via a URL in the config[openi_dir] parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:openi-cms_group:openi-cms:1.0.1:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:openi-cms_group:openi-cms:1.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:openi-cms_group:openi-cms:1.0.1_beta1:*:*:*:*:*:*:*
- (no CPE)range: <=1.0.1
Patches
Vulnerability mechanics
References
6- bb.domaindlx.com/bingung/shellcore/advisories.aspnvdExploitVendor Advisory
- secunia.com/advisories/21874nvdExploitVendor Advisory
- www.securityfocus.com/bid/19952nvdExploit
- www.vupen.com/english/advisories/2006/3556nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/28859nvd
- www.exploit-db.com/exploits/2344nvd
News mentions
0No linked articles in our index yet.