Lucene search

[email protected]CVE-2006-2270

HistoryMay 09, 2006 - 10:02 a.m.

CVE-2006-2270

2006-05-0910:02:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2006-2270

php

remote file inclusion

jetbox cms 2.1

vulnerability

nvd

7.8 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.164 Low

EPSS

Percentile

95.9%

JSON

PHP remote file inclusion vulnerability in includes/config.php in Jetbox CMS 2.1 allows remote attackers to execute arbitrary code via a URL in the relative_script_path parameter.

CPENameOperatorVersion
jetbox:jetbox_cmsjetbox jetbox cmseq2.1

CPE	Name	Operator	Version
jetbox:jetbox_cms	jetbox jetbox cms	eq	2.1

References

secunia.com/advisories/19993

securityreason.com/securityalert/861

securitytracker.com/id?1016061

www.osvdb.org/25313

www.securityfocus.com/archive/1/433121/100/0/threaded

www.securityfocus.com/bid/17861

www.vupen.com/english/advisories/2006/1686

exchange.xforce.ibmcloud.com/vulnerabilities/26289

exchange.xforce.ibmcloud.com/vulnerabilities/28843

7.8 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.164 Low

EPSS

Percentile

95.9%

JSON

Related for CVE-2006-2270

prion1 cve2