Lucene search

K
cve[email protected]CVE-2006-1154
HistoryMar 10, 2006 - 11:02 a.m.

CVE-2006-1154

2006-03-1011:02:00
CWE-94
web.nvd.nist.gov
22
cve-2006-1154
php
remote file inclusion
archive.php
fantastic news 2.1.2
vulnerability

7.1 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.148 Low

EPSS

Percentile

95.7%

PHP remote file inclusion vulnerability in archive.php in Fantastic News 2.1.2 allows remote attackers to include arbitrary files via the CONFIG[script_path] variable. NOTE: 2.1.4 was also reported to be vulnerable.

7.1 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.148 Low

EPSS

Percentile

95.7%

Related for CVE-2006-1154