CVE-2006-5920

Yuuki Yoshizawa Exporia 0.3.0 - RCE

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-5920. PoCs published by Root3r_H3ll.

AI-analyzed exploit summary The provided text describes a retired remote file-include vulnerability in Exporia, but no actual exploit code is present. The BID (20205) was retired as further analysis showed the application was not vulnerable.

Description

PHP remote file inclusion vulnerability in common.php in Yuuki Yoshizawa Exporia 0.3.0 allows remote attackers to execute arbitrary PHP code via a URL in the lan parameter. NOTE: SecurityFocus disputes this issue, saying "further analysis reveals that the application is not vulnerable." NOTE: this issue may overlap CVE-2006-5113

Exploits (1)

exploitdb WRITEUP VERIFIED
by Root3r_H3ll · textwebappsphp
https://www.exploit-db.com/exploits/28673

The provided text describes a retired remote file-include vulnerability in Exporia, but no actual exploit code is present. The BID (20205) was retired as further analysis showed the application was not vulnerable.

Classification
Writeup 90%
Attack Type
Other
Complexity
Trivial
Reliability
Theoretical
Target: Exporia (version unspecified)
No auth needed
Prerequisites: None, as the vulnerability was deemed non-existent
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/20205
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/29895
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/450024/100/200/threaded
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/1858

Scores

EPSS 0.0313
EPSS Percentile 86.2%

Details

Status published
Products (1)
yuuki_yoshizawa/exporia 0.3.0
Published Nov 15, 2006
Tracked Since Feb 18, 2026