<em style='font-weight:bold;'>(Description Provided by <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=2006-5506" target="_blank">CVE</a>)</em> : Multiple PHP remote file inclusion vulnerabilities in WiClear 0.10 allow remote attackers to execute arbitrary PHP code via the path parameter in (1) inc/prepend.inc.php, (2) inc/lib/boxes.lib.php, (3) inc/lib/tools.lib.php, (4) tools/trackback/index.php, and (5) tools/utf8conversion/index.php in admin/; and (6) prepend.inc.php, (7) lib/boxes.lib.php, and (8) lib/history.lib.php in inc/.

Unknown or Incomplete

• CVE ID: 2006-5506 (see also: NVD)
• Secunia Advisory ID: 22547
• Milw0rm: 2624
• Exploit Database: 2624
• Related OSVDB ID: 29942 29943 29944 29945 29947 29948 29949
• Vendor URL: http://wiclear.free.fr/

Unknown or Incomplete