CVE-2006-5021

CRITICAL

redblog 0.5 - Remote Code Execution via PHP File Inclusion

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 4 public exploits for CVE-2006-5021. PoCs published by Root3r_H3ll.

AI-analyzed exploit summary The provided text describes a remote file inclusion vulnerability in the redblog application due to insufficient sanitization of user-supplied data. It includes an example URL demonstrating the vulnerability but lacks actual exploit code.

Description

Multiple PHP remote file inclusion vulnerabilities in redgun RedBLoG 0.5 allow remote attackers to execute arbitrary PHP code via a URL in (1) the root parameter in imgen.php, and the root_path parameter in (2) admin/config.php, (3) common.php, and (4) admin/index.php. NOTE: the provenance of this information is unknown; the details are obtained from third party information.

Exploits (4)

exploitdb WRITEUP VERIFIED
by Root3r_H3ll · textwebappsphp
https://www.exploit-db.com/exploits/28611

The provided text describes a remote file inclusion vulnerability in the redblog application due to insufficient sanitization of user-supplied data. It includes an example URL demonstrating the vulnerability but lacks actual exploit code.

Classification
Writeup 80%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: redblog (version not specified)
No auth needed
Prerequisites: Access to the vulnerable application
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by Root3r_H3ll · textwebappsphp
https://www.exploit-db.com/exploits/28613

The provided text describes a remote file inclusion vulnerability in the redblog application due to insufficient sanitization of user-supplied data. It includes a sample exploit URL but lacks executable code.

Classification
Writeup 80%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: redblog (version not specified)
No auth needed
Prerequisites: Access to the target application · Ability to craft malicious URLs
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by Root3r_H3ll · textwebappsphp
https://www.exploit-db.com/exploits/28614

The provided text describes a remote file inclusion vulnerability in the redblog application due to insufficient sanitization of user-supplied data. It includes an example URL demonstrating the exploit but lacks executable code.

Classification
Writeup 80%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: redblog (version not specified)
No auth needed
Prerequisites: Access to the vulnerable application
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by Root3r_H3ll · textwebappsphp
https://www.exploit-db.com/exploits/28612

The provided text describes a remote file inclusion vulnerability in the redblog application due to insufficient sanitization of user-supplied data. It includes an example exploit URL but lacks executable code.

Classification
Writeup 80%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: redblog (version not specified)
No auth needed
Prerequisites: Network access to the target application · Target application must have allow_url_include enabled
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1
Core References
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/20115

Scores

CVSS v3 9.8
EPSS 0.0160
EPSS Percentile 82.2%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact total

Details

CWE
CWE-94
Status published
Products (1)
redblog/redblog 0.5
Published Sep 27, 2006
Tracked Since Feb 18, 2026