Lucene search
MitreCVE-2006-3774HistoryJul 24, 2006 - 12:19 p.m.
CVE-2006-3774
2006-07-2412:19:00
CWE-94
mitre
web.nvd.nist.gov
218
cve
2006
3774
php
remote file inclusion
vulnerability
performs
com_performs
joomla
arbitrary code execution
url
mosconfig_absolute_path
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.6
Confidence
Low
EPSS
0.081
Percentile
94.4%
PHP remote file inclusion vulnerability in performs.php in the perForms component (com_performs) 1.0 and earlier for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Affected configurations
Node
joomlaperforms_componentRange≤1.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| joomla | performs_component | * | cpe:2.3:a:joomla:performs_component:*:*:*:*:*:*:*:* |
Related
checkpoint_advisories
checkpoint_advisories
Joomla Component com_performs Remote File Inclusion (CVE-2006-3774)
2014-11-10 00:00:00
cvelist
cvelist
CVE-2006-3774
2006-07-21 17:00:00
exploitdb
exploitdb
Mambo Component perForms 1.0 - Remote File Inclusion
2006-07-17 00:00:00
nvd
nvd
CVE-2006-3774
2006-07-24 12:19:00
nessus
nessus
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.6
Confidence
Low
EPSS
0.081
Percentile
94.4%
Related for CVE-2006-3774