Unrated severityNVD Advisory· Published Nov 6, 2006· Updated Jun 16, 2026
CVE-2006-5733
CVE-2006-5733
Description
Directory traversal vulnerability in error.php in PostNuke 0.763 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the PNSVlang (PNSV lang) cookie, as demonstrated by injecting PHP sequences into an Apache HTTP Server log file, which is then included by error.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3Patches
Vulnerability mechanics
References
6News mentions
0No linked articles in our index yet.