Lucene search
MitreCVE-2006-5261HistoryOct 12, 2006 - 10:07 p.m.
CVE-2006-5261
2006-10-1222:07:00
mitre
web.nvd.nist.gov
21
cve
phpmynews
remote file inclusion
vulnerabilities
php
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8
Confidence
Low
EPSS
0.086
Percentile
94.5%
Multiple PHP remote file inclusion vulnerabilities in PHPMyNews 1.4 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the cfg_include_dir parameter in (1) disp_form.php3, (2) disp_smileys.php3, (3) little_news.php3, and (4) index.php3 in include/.
Affected configurations
Node
phpmynewsphpmynewsRange≤1.4
Related
nvd
nvd
CVE-2006-5261
2006-10-12 22:07:00
exploitdb
exploitdb
PHPMyNews 1.4 - 'cfg_include_dir' Remote File Inclusion
2006-10-08 00:00:00
cvelist
cvelist
CVE-2006-5261
2006-10-12 22:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8
Confidence
Low
EPSS
0.086
Percentile
94.5%
Related for CVE-2006-5261