Lucene search

K
cve[email protected]CVE-2006-1563
HistoryMar 31, 2006 - 11:06 a.m.

CVE-2006-1563

2006-03-3111:06:00
NVD-CWE-Other
web.nvd.nist.gov
17
cve-2006-1563
code injection
remote code execution
vscripts
kuba kunkiewicz
vbook 2.0
security vulnerability

8 High

AI Score

Confidence

Low

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.006 Low

EPSS

Percentile

78.7%

Direct static code injection vulnerability in config.php in vscripts (aka Kuba Kunkiewicz) [V]Book (aka VBook) 2.0 allows remote administrators to execute arbitrary PHP code into the config file, which is included other [V]Book scripts.

CPENameOperatorVersion
vscripts:vbookvscripts vbookeq2.0

8 High

AI Score

Confidence

Low

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.006 Low

EPSS

Percentile

78.7%

Related for CVE-2006-1563