CVE-2006-5256

HIGH

7.5

CVSS Severity Score

EPSS Score0.0210%

EPSS Percentile24.45th

PublishedOct 12, 2006

Last ModifiedApr 23, 2026

Vulnerability Description

PHP remote file inclusion vulnerability in claroline/inc/lib/import.lib.php in Claroline 1.8.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the includePath parameter.

Affected Platforms (CPE)

📦

Claroline

<= 1.8.0

📦

Claroline

= 1.2

📦

Claroline

= 1.3

📦

Claroline

= 1.4

📦

Claroline

= 1.5

📦

Claroline

= 1.5.3

📦

Claroline

= 1.5.4

📦

Claroline

= 1.6

📦

Claroline

= 1.6_beta

📦

Claroline

= 1.6_rc1

📦

Claroline

= 1.7

📦

Claroline

= 1.7.1

📦

Claroline

= 1.7.2

📦

Claroline

= 1.7.3

📦

Claroline

= 1.7.4

📦

Claroline

= 1.7.5

📦

Claroline

= 1.7.6

📦

Claroline

= 1.7.7

References & Advisories

🔗 http://secunia.com/advisories/22364

🔗 http://securityreason.com/securityalert/1719

🔗 http://securitytracker.com/id?1017044

🔗 http://www.securityfocus.com/archive/1/448174/100/0/threaded

🔗 http://www.securityfocus.com/bid/20444

🔗 http://www.vupen.com/english/advisories/2006/3996

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/29426

🔗 https://www.exploit-db.com/exploits/2510

Vulnerability Description

Affected Platforms (CPE)

Claroline

Claroline

Claroline

Claroline

Claroline

Claroline

Claroline

Claroline

Claroline

Claroline

Claroline

Claroline

Claroline

Claroline

Claroline

Claroline

Claroline

Claroline

References & Advisories

Related Vulnerabilities