Lucene search
MitreCVE-2006-3689HistoryJul 21, 2006 - 2:03 p.m.
CVE-2006-3689
2006-07-2114:03:00
mitre
web.nvd.nist.gov
30
cve-2006-3689
php
remote file inclusion
codeworks
gnomedia
subberz[lite]
myadmindir
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.9
Confidence
High
EPSS
0.153
Percentile
95.9%
PHP remote file inclusion vulnerability in user-func.php in Codeworks Gnomedia SubberZ[Lite] allows remote attackers to execute arbitrary PHP code via a URL in the myadmindir parameter. NOTE: this issue has been disputed by a third party that claims that " the myadmindir variable is set before any GET variables are processed.
Affected configurations
Node
codeworksgnomedia_subberzMatchlite
| Vendor | Product | Version | CPE |
|---|---|---|---|
| codeworks | gnomedia_subberz | lite | cpe:2.3:a:codeworks:gnomedia_subberz:lite:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2006-3689
2006-07-18 21:00:00
nvd
nvd
CVE-2006-3689
2006-07-21 14:03:00
exploitdb
exploitdb
Subberz Lite - UserFunc Remote File Inclusion
2006-07-14 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.9
Confidence
High
EPSS
0.153
Percentile
95.9%
Related for CVE-2006-3689