CVE-2006-5407

CVE-2006-5407CVE-2006-5407

enhancesoft / osticket

Description

PHP remote file inclusion vulnerability in open_form.php in osTicket allows remote attackers to execute arbitrary PHP code via a URL in the include_dir parameter.

Scoring

CVSS 7.5 ()
VectorAV:N/AC:L/Au:N/C:P/I:P/A:P
Last modified2026-07-10
Sourced from NVD. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.