Lucene search

[email protected]CVE-2006-0644

HistoryFeb 10, 2006 - 11:02 a.m.

CVE-2006-0644

2006-02-1011:02:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2006-0644

cpg-nuke dragonfly cms

directory traversal

remote code execution

security vulnerability

7.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.018 Low

EPSS

Percentile

88.1%

JSON

Multiple directory traversal vulnerabilities in install.php in CPG-Nuke Dragonfly CMS (aka CPG Dragonfly CMS) 9.0.6.1 allow remote attackers to include and execute arbitrary local files via directory traversal sequences and a NUL (%00) character in (1) the newlang parameter and (2) the installlang parameter in a cookie, as demonstrated by using error.php to insert malicious code into a log file, or uploading a malicious .png file, which is then included using install.php.

CPENameOperatorVersion
cpg-nuke:dragonfly_cmscpg-nuke dragonfly cmseq9.0.6_.1

CPE	Name	Operator	Version
cpg-nuke:dragonfly_cms	cpg-nuke dragonfly cms	eq	9.0.6_.1

References

dragonflycms.org/Forums/viewtopic/p=98034.html

dragonflycms.org/Forums/viewtopic/p=98034.html#98034

retrogod.altervista.org/dragonfly9.0.6.1_incl_xpl.html

securitytracker.com/id?1015601

www.osvdb.org/23058

www.securityfocus.com/archive/1/424439/100/0/threaded

www.securityfocus.com/bid/16546

exchange.xforce.ibmcloud.com/vulnerabilities/24660

7.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.018 Low

EPSS

Percentile

88.1%

JSON

Related for CVE-2006-0644

nessus1 prion1