Lucene search

[email protected]CVE-2006-2182

HistoryMay 04, 2006 - 12:38 p.m.

CVE-2006-2182

2006-05-0412:38:00

[email protected]

web.nvd.nist.gov

cve

php

remote file inclusion

vulnerability

albinator 2.0.8

nvd

6.4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

7.7 High

AI Score

Confidence

Low

0.05 Low

EPSS

Percentile

92.9%

JSON

Multiple PHP remote file inclusion vulnerabilities in (1) eday.php, (2) eshow.php, or (3) forgot.php in albinator 2.0.8 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the Config_rootdir parameter.

Affected configurations

NVD

Node

albinatoralbinatorMatch2.0.8

CPENameOperatorVersion
albinator:albinatoralbinatoreq2.0.8

CPE	Name	Operator	Version
albinator:albinator	albinator	eq	2.0.8

References

pridels0.blogspot.com/2006/05/albinator-208-remote-file-inclusion.html

secunia.com/advisories/19952

www.osvdb.org/25239

www.osvdb.org/25240

www.osvdb.org/25241

www.securityfocus.com/bid/17825

www.vupen.com/english/advisories/2006/1643

6.4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

7.7 High

AI Score

Confidence

Low

0.05 Low

EPSS

Percentile

92.9%

JSON

Related for CVE-2006-2182

cvelist1 prion1 nvd1