Lucene search

K
cve[email protected]CVE-2006-2736
HistoryJun 01, 2006 - 10:02 a.m.

CVE-2006-2736

2006-06-0110:02:00
NVD-CWE-Other
web.nvd.nist.gov
21
cve-2006-2736
php
remote file inclusion
blend portal 1.2.0
phpbb
register_globals
vulnerability

7.7 High

AI Score

Confidence

Low

5.1 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

0.215 Low

EPSS

Percentile

96.3%

PHP remote file inclusion vulnerability in blend_data/blend_common.php in Blend Portal 1.2.0, as used with phpBB when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter. NOTE: This is a similar vulnerability to CVE-2006-2507.

7.7 High

AI Score

Confidence

Low

5.1 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

0.215 Low

EPSS

Percentile

96.3%

Related for CVE-2006-2736