Lucene search

MitreCVE-2006-5803

HistoryNov 08, 2006 - 8:07 p.m.

CVE-2006-5803

2006-11-0820:07:00

mitre

web.nvd.nist.gov

php

remote file inclusion

vulnerability

mxbb smartor album

nvd

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

Confidence

Low

EPSS

0.008

Percentile

82.1%

JSON

PHP remote file inclusion vulnerability in modules/mx_smartor/album.php in the mxBB Smartor Album module 1.02 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the module_root_path parameter.

Affected configurations

Nvd

Node

mxbbmxbb_smartor_albumRange≤1.02

VendorProductVersionCPE
mxbbmxbb_smartor_album*cpe:2.3:a:mxbb:mxbb_smartor_album:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
mxbb	mxbb_smartor_album	*	cpe:2.3:a:mxbb:mxbb_smartor_album::::::::

References

www.securityfocus.com/bid/20932

exchange.xforce.ibmcloud.com/vulnerabilities/30015

www.exploit-db.com/exploits/2723

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

Confidence

Low

EPSS

0.008

Percentile

82.1%

JSON

Related for CVE-2006-5803