VYPR
Unrated severityNVD Advisory· Published Nov 1, 2006· Updated Jun 16, 2026

CVE-2006-5634

CVE-2006-5634

Description

Multiple PHP remote file inclusion vulnerabilities in phpProfiles 2.1 Beta allow remote attackers to execute arbitrary PHP code via a URL in the (1) reqpath parameter to (a) body.inc.php and (b) body_blog.inc.php in users/include/; or the (2) usrinc parameter in users/include/upload_ht.inc.php.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:phpprofiles:phpprofiles:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:phpprofiles:phpprofiles:*:*:*:*:*:*:*:*range: <=2.1_beta
    • (no CPE)range: =2.1 Beta

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.