Detections
Analytics

CVE-2006-1623

critical

Description

Unspecified vulnerability in main.php in an unspecified "file created by Andries Bruinsma," possibly a FleXiBle Development (FXB) application, allows remote attackers to include and execute arbitrary PHP code. NOTE: this disclosure is extremely vague and has very little information about the specific vulnerability type. In addition, there is little public information on the named product. Finally, an XSS vector is implied in the subject line, but because there is no other information and evidence of a cut-and-paste error, it will not be assigned a separate CVE identifier unless additional information is provided.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/25603

https://exchange.xforce.ibmcloud.com/vulnerabilities/25600

http://www.securityfocus.com/archive/1/430334/100/0/threaded

http://www.securityfocus.com/archive/1/429613/100/0/threaded

http://attrition.org/pipermail/vim/2006-April/000680.html

Details

Source: Mitre, NVD

Published: 2006-04-05

Updated: 2026-04-16

Risk Information

CVSS v2

Base Score: 4.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N

Severity: Medium

CVSS v3

Base Score: 9.3

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N

Severity: Critical

EPSS

EPSS: 0.00465