CVE-2006-5021

Name of the Vulnerable Software and Affected Versions redgun RedBLoG version 0.5

Description The issue allows remote attackers to execute arbitrary PHP code via a URL in several parameters, including the root parameter in "imgen.php", and the root path parameter in "admin/config.php", "common.php", and "admin/index.php".

Recommendations For redgun RedBLoG version 0.5, as a temporary workaround, consider restricting access to the "imgen.php", "admin/config.php", "common.php", and "admin/index.php" files until a patch is available. Avoid using the root and root path parameters in the affected files until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.