CVE-2006-5407
PHP remote file inclusion vulnerability in open_form.php in osTicket allows remote attackers to execute arbitrary PHP code via a URL in the
CVSS
7.5
Sin CVSS
EPSS
1.4%
p69
KEV
—
Exploit Today
21
0-100
Publicado: 19 oct 2006 · Última mod.: 10 jul 2026
1.4%EPSS · 30 días1.4%
2026-06-302026-07-16
PHP remote file inclusion vulnerability in open_form.php in osTicket allows remote attackers to execute arbitrary PHP code via a URL in the include_dir parameter.
- securityreason.comhttp://securityreason.com/securityalert/1745
- www.securityfocus.comhttp://www.securityfocus.com/archive/1/448687/100/0/threaded
- exchange.xforce.ibmcloud.comhttps://exchange.xforce.ibmcloud.com/vulnerabilities/29577
- securityreason.comhttp://securityreason.com/securityalert/1745
- www.securityfocus.comhttp://www.securityfocus.com/archive/1/448687/100/0/threaded
- exchange.xforce.ibmcloud.comhttps://exchange.xforce.ibmcloud.com/vulnerabilities/29577
Sin CVEs relacionados por CWE o producto.