Lucene search

[email protected]CVE-2006-6864

HistoryJan 04, 2007 - 10:00 p.m.

CVE-2006-6864

2007-01-0422:00:00

[email protected]

web.nvd.nist.gov

cve-2006-6864

enigma2 coppermine bridge

php

remote file inclusion

vulnerability

security

nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.9 High

AI Score

Confidence

Low

0.1 Low

EPSS

Percentile

94.9%

JSON

PHP remote file inclusion vulnerability in E2_header.inc.php in Enigma2 Coppermine Bridge 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the boarddir parameter.

Affected configurations

NVD

Node

enigma2coppermine_bridgeMatch1.0

CPENameOperatorVersion
enigma2:coppermine_bridgeenigma2 coppermine bridgeeq1.0

CPE	Name	Operator	Version
enigma2:coppermine_bridge	enigma2 coppermine bridge	eq	1.0

References

securityreason.com/securityalert/2092

securitytracker.com/id?1017459

www.attrition.org/pipermail/vim/2007-January/001208.html

www.securityfocus.com/archive/1/455553/100/0/threaded

www.securityfocus.com/bid/21825

www.exploit-db.com/exploits/3050

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.9 High

AI Score

Confidence

Low

0.1 Low

EPSS

Percentile

94.9%

JSON

Related for CVE-2006-6864

cvelist1 nvd1