Unrated severityNVD Advisory· Published Oct 18, 2006· Updated Apr 23, 2026
CVE-2006-5399
CVE-2006-5399
Description
PHP remote file inclusion vulnerability in classes/Import_MM.class.php in PHPRecipeBook 2.36, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the g_rb_basedir parameter.
Affected products
1- cpe:2.3:a:phprecipebook:phprecipebook:2.36:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
8- secunia.com/advisories/22427nvdPatchVendor Advisory
- www.vupen.com/english/advisories/2006/4051nvdVendor Advisory
- www.securityfocus.com/archive/1/449116/100/0/threadednvd
- www.securityfocus.com/archive/1/449130/100/0/threadednvd
- www.securityfocus.com/archive/1/449236/100/0/threadednvd
- www.securityfocus.com/bid/20575nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/29611nvd
- www.exploit-db.com/exploits/2584nvd
News mentions
0No linked articles in our index yet.