{"uuid": "2bb4d432-8dac-47a4-a238-754520012273", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2006-6975", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/2141", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2006-6975\n\ud83d\udd39 Description: PHP remote file inclusion vulnerability in centipaid_class.php in CentiPaid 1.4.3 allows remote attackers to execute arbitrary code via a URL in the class_pwd parameter.  NOTE: this issue has been disputed by CVE and multiple third parties, who state that $class_pwd is set to a static value before the relevant include statement\n\ud83d\udccf Published: 2007-02-08T17:00:00Z\n\ud83d\udccf Modified: 2025-01-17T14:13:37.244Z\n\ud83d\udd17 References:\n1. http://archives.neohapsis.com/archives/bugtraq/2006-10/0494.html\n2. http://archives.neohapsis.com/archives/bugtraq/2006-10/0472.html\n3. http://archives.neohapsis.com/archives/bugtraq/2006-10/0499.html\n4. http://www.osvdb.org/31638", "creation_timestamp": "2025-01-17T14:56:55.000000Z"}