Lucene search
MitreCVE-2006-3528HistoryJul 12, 2006 - 12:05 a.m.
CVE-2006-3528
2006-07-1200:05:00
CWE-94
mitre
web.nvd.nist.gov
71
cve
php
remote file inclusion
simpleboard mambo
vulnerability
nvd
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.5
Confidence
Low
EPSS
0.129
Percentile
95.5%
Multiple PHP remote file inclusion vulnerabilities in Simpleboard Mambo module 1.1.0 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the sbp parameter to (1) image_upload.php and (2) file_upload.php.
Affected configurations
Node
mamboxchangesimpleboardRange≤1.1.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| mamboxchange | simpleboard | * | cpe:2.3:a:mamboxchange:simpleboard:*:*:*:*:*:*:*:* |
References
Related
nvd
nvd
exploitdb
exploitdb
Mambo Component SimpleBoard 1.1.0 - Remote File Inclusion
2006-07-08 00:00:00
cvelist
cvelist
prion
prion
Unrestricted file upload
2009-05-28 14:30:00
cve
cve
CVE-2006-5043
2006-09-27 23:07:00
CVE-2008-6814
2009-05-28 14:30:00
nessus
nessus
SimpleBoard / Joomlaboard 'sbp' Parameter Remote File Include
2006-07-11 00:00:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.5
Confidence
Low
EPSS
0.129
Percentile
95.5%
Related for CVE-2006-3528