Lucene search

K
cve[email protected]CVE-2006-1959
HistoryApr 21, 2006 - 10:02 a.m.

CVE-2006-1959

2006-04-2110:02:00
web.nvd.nist.gov
23
cve-2006-1959
php
remote file inclusion
actualscripts
actualanalyzer lite
gold
server
nvd

7.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.15 Low

EPSS

Percentile

95.8%

PHP remote file inclusion vulnerability in direct.php in ActualScripts ActualAnalyzer Lite 2.72 and earlier, Gold 7.63 and earlier, and Server 8.23 and earlier allows remote attackers to execute arbitrary code via a URL in the rf parameter.

Affected configurations

NVD
Node
actualscriptsactualanalyzerRange8.23server
OR
actualscriptsactualanalyzerMatch2.72lite
OR
actualscriptsactualanalyzerMatch7.63gold

7.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.15 Low

EPSS

Percentile

95.8%

Related for CVE-2006-1959