CVE-2006-5906

N/A Unknown

Published: November 15, 2006 Modified: April 23, 2026

Description

PHP remote file inclusion vulnerability in modules/bannieres/bannieres.php in Jean-Christophe Ramos SCRIPT BANNIERES (aka ban 0.1 and PLS-Bannieres 1.21) allows remote attackers to execute arbitrary PHP code via a URL in the chemin parameter. NOTE: the issue is disputed by other researchers, who observe that $chemin is defined before use

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://www.securityfocus.com/archive/1/449910/100/200/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/449927/100/200/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/449955/100/200/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/450297/100/200/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/20772

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/29856

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/449910/100/200/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/449927/100/200/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/449955/100/200/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/450297/100/200/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/20772

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/29856

Source: af854a3a-2127-422b-91ae-364da2661108

12 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

1.5%

81th percentile

Exploitation Status

Not in CISA KEV

Affected Vendors

jean-christophe_ramos