Lucene search

[email protected]CVE-2006-2841

HistoryJun 06, 2006 - 8:06 p.m.

CVE-2006-2841

2006-06-0620:06:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2006-2841

php

remote file inclusion

acid cms 1.1.3

vulnerability

8.4 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.582 Medium

EPSS

Percentile

97.7%

JSON

Multiple PHP remote file inclusion vulnerabilities in AssoCIateD (aka ACID) CMS 1.1.3 allow remote attackers to execute arbitrary PHP code via a URL in the root_path parameter to (1) menu.php, (2) profile.php, (3) users.php, (4) cache_mngt.php, and (5) gallery_functions.php.

CPENameOperatorVersion
associated:associated_cmsassociated associated cmseq1.1.3

CPE	Name	Operator	Version
associated:associated_cms	associated associated cms	eq	1.1.3

References

secunia.com/advisories/20426

sourceforge.net/forum/forum.php?forum_id=577084

www.osvdb.org/26146

www.osvdb.org/26147

www.osvdb.org/26148

www.osvdb.org/26149

www.osvdb.org/26150

www.securityfocus.com/bid/18220

www.vupen.com/english/advisories/2006/2107

exchange.xforce.ibmcloud.com/vulnerabilities/26931

www.exploit-db.com/exploits/1858

8.4 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.582 Medium

EPSS

Percentile

97.7%

JSON

Related for CVE-2006-2841

prion1