Lucene search
MitreCVE-2006-5634HistoryNov 01, 2006 - 12:07 a.m.
CVE-2006-5634
2006-11-0100:07:00
CWE-94
mitre
web.nvd.nist.gov
28
cve-2006-5634
php
remote file inclusion
vulnerability
phpprofiles 2.1 beta
nvd
security
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
8
Confidence
Low
EPSS
0.114
Percentile
95.2%
Multiple PHP remote file inclusion vulnerabilities in phpProfiles 2.1 Beta allow remote attackers to execute arbitrary PHP code via a URL in the (1) reqpath parameter to (a) body.inc.php and (b) body_blog.inc.php in users/include/; or the (2) usrinc parameter in users/include/upload_ht.inc.php.
Affected configurations
Node
phpprofilesphpprofilesRange≤2.1_beta
| Vendor | Product | Version | CPE |
|---|---|---|---|
| phpprofiles | phpprofiles | * | cpe:2.3:a:phpprofiles:phpprofiles:*:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2006-5634
2006-11-01 00:07:00
CVE-2006-6740
2006-12-26 23:28:00
exploitdb
exploitdb
phpProfiles 2.1 Beta - Multiple Remote File Inclusions
2006-10-30 00:00:00
cvelist
cvelist
CVE-2006-5634
2006-11-01 00:00:00
CVE-2006-6740
2006-12-26 23:00:00
cve
cve
CVE-2006-6740
2006-12-26 23:28:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
8
Confidence
Low
EPSS
0.114
Percentile
95.2%
Related for CVE-2006-5634