Lucene search
MitreCVE-2006-2033HistoryApr 26, 2006 - 12:06 a.m.
CVE-2006-2033
2006-04-2600:06:00
mitre
web.nvd.nist.gov
22
cve-2006-2033
php
remote file inclusion
core corenews 2.0.1
security vulnerability
nvd
CVSS2
6.4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:P/A:N
AI Score
7.2
Confidence
Low
EPSS
0.134
Percentile
95.7%
PHP remote file inclusion vulnerability in Core CoreNews 2.0.1 and earlier allows remote authenticated users to execute arbitrary commands via the show parameter. NOTE: this is a different vector than CVE-2006-1212, although it might be the same primary issue.
Affected configurations
Node
corenewscorenewsMatch2.0.1
Related
prion
prion
Remote file inclusion
2006-04-26 00:06:00
Code injection
2006-03-14 01:06:00
cvelist
cvelist
CVE-2006-2033
2006-04-26 00:00:00
CVE-2006-1212
2006-03-14 01:00:00
nvd
nvd
CVE-2006-2033
2006-04-26 00:06:00
CVE-2006-1212
2006-03-14 01:06:00
exploitdb
exploitdb
Core News 2.0.1 - 'index.php' Remote Code Execution
2006-03-10 00:00:00
cve
cve
CVE-2006-1212
2006-03-14 01:06:00
CVSS2
6.4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:P/A:N
AI Score
7.2
Confidence
Low
EPSS
0.134
Percentile
95.7%
Related for CVE-2006-2033