Lucene search

K
cve[email protected]CVE-2006-1636
HistoryApr 06, 2006 - 10:04 a.m.

CVE-2006-1636

2006-04-0610:04:00
CWE-94
web.nvd.nist.gov
31
php
remote file inclusion
vwar
cve-2006-1636
nvd

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.2

Confidence

Low

EPSS

0.058

Percentile

93.4%

PHP remote file inclusion vulnerability in get_header.php in VWar 1.5.0 R12 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the vwar_root parameter. NOTE: this is a different vulnerability than CVE-2006-1503.

Affected configurations

NVD
Node
vwarvirtual_warMatch1.0.0
OR
vwarvirtual_warMatch1.0.1
OR
vwarvirtual_warMatch1.0.2
OR
vwarvirtual_warMatch1.0.3
OR
vwarvirtual_warMatch1.0.4
OR
vwarvirtual_warMatch1.0.5
OR
vwarvirtual_warMatch1.0.6
OR
vwarvirtual_warMatch1.0.7
OR
vwarvirtual_warMatch1.0.8
OR
vwarvirtual_warMatch1.0.9
OR
vwarvirtual_warMatch1.1.0
OR
vwarvirtual_warMatch1.1.1
OR
vwarvirtual_warMatch1.1.2
OR
vwarvirtual_warMatch1.1.3
OR
vwarvirtual_warMatch1.1.4
OR
vwarvirtual_warMatch1.1.5
OR
vwarvirtual_warMatch1.1.6
OR
vwarvirtual_warMatch1.1.7
OR
vwarvirtual_warMatch1.1.8
OR
vwarvirtual_warMatch1.2.0
OR
vwarvirtual_warMatch1.2.1
OR
vwarvirtual_warMatch1.2.2
OR
vwarvirtual_warMatch1.3
OR
vwarvirtual_warMatch1.4
OR
vwarvirtual_warMatch1.5
OR
vwarvirtual_warMatch1.5.0_r1
OR
vwarvirtual_warMatch1.5.0_r2
OR
vwarvirtual_warMatch1.5.0_r3
OR
vwarvirtual_warMatch1.5.0_r4
OR
vwarvirtual_warMatch1.5.0_r5
OR
vwarvirtual_warMatch1.5.0_r6
OR
vwarvirtual_warMatch1.5.0_r7
OR
vwarvirtual_warMatch1.5.0_r8
OR
vwarvirtual_warMatch1.5.0_r9
OR
vwarvirtual_warMatch1.5.0_r10
OR
vwarvirtual_warMatch1.5.0_r11
OR
vwarvirtual_warMatch1.5.0_r12
VendorProductVersionCPE
vwarvirtual_war1.0.0cpe:/a:vwar:virtual_war:1.0.0:::
vwarvirtual_war1.0.5cpe:/a:vwar:virtual_war:1.0.5:::
vwarvirtual_war1.5.0+r11cpe:/a:vwar:virtual_war:1.5.0+r11:::
vwarvirtual_war1.0.8cpe:/a:vwar:virtual_war:1.0.8:::
vwarvirtual_war1.5cpe:/a:vwar:virtual_war:1.5:::
vwarvirtual_war1.0.6cpe:/a:vwar:virtual_war:1.0.6:::
vwarvirtual_war1.5.0+r9cpe:/a:vwar:virtual_war:1.5.0+r9:::
vwarvirtual_war1.0.9cpe:/a:vwar:virtual_war:1.0.9:::
vwarvirtual_war1.5.0+r12cpe:/a:vwar:virtual_war:1.5.0+r12:::
vwarvirtual_war1.1.1cpe:/a:vwar:virtual_war:1.1.1:::
Rows per page:
1-10 of 371

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.2

Confidence

Low

EPSS

0.058

Percentile

93.4%