CVE-2006-5546

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
26/10/2006
Last modified:
09/04/2025

Description

PHP remote file inclusion vulnerability in OTSCMS/OTSCMS.php in Open Tibia Server Content Management System (OTSCMS) 1.3.0 through 1.4.1 allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[config][otscms][directories][classes] parameter.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:otscms:otscms:1.3.0:*:*:*:*:*:*:*
cpe:2.3:a:otscms:otscms:1.3.3:*:*:*:*:*:*:*
cpe:2.3:a:otscms:otscms:1.3.4:*:*:*:*:*:*:*
cpe:2.3:a:otscms:otscms:1.4.1:*:*:*:*:*:*:*