VYPR
Unrated severityNVD Advisory· Published Sep 19, 2006· Updated Jun 16, 2026

CVE-2006-4851

CVE-2006-4851

Description

PHP remote file inclusion vulnerability in system/_b/contentFiles/gBHTMLEditor.php in BolinOS 4.5.5 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the gBRootPath parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information.

Affected products

4
  • Bolinos/Bolinos4 versions
    cpe:2.3:a:bolinos:bolinos:*:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:bolinos:bolinos:*:*:*:*:*:*:*:*range: <=4.5.5
    • cpe:2.3:a:bolinos:bolinos:4.3.0:*:*:*:*:*:*:*
    • cpe:2.3:a:bolinos:bolinos:4.4.1:*:*:*:*:*:*:*
    • (no CPE)range: <=4.5.5

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.