Lucene search

[email protected]CVE-2006-3531

HistoryJul 12, 2006 - 9:05 p.m.

CVE-2006-3531

2006-07-1221:05:00

[email protected]

web.nvd.nist.gov

121

cve-2006-3531

information security

pivot

authentication

remote code execution

file upload

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

Low

0.009 Low

EPSS

Percentile

83.0%

JSON

includes/editor/insert_image.php in Pivot 1.30 RC2 and earlier creates the authentication credentials from parameters, which allows remote attackers to obtain privileges and upload arbitrary files via modified (1) pass and (2) session parameters, and (3) pass and (4) userlevel indices of the (a) Pivot_Vars[] or (b) Users[] array parameters.

Affected configurations

NVD

Node

pivotpivotRange≤1.30_rc2

CPENameOperatorVersion
pivot:pivotpivotle1.30_rc2

CPE	Name	Operator	Version
pivot:pivot	pivot	le	1.30_rc2

References

retrogod.altervista.org/pivot_130RC2_xpl.html

secunia.com/advisories/20962

securityreason.com/securityalert/1214

www.osvdb.org/27126

www.securityfocus.com/archive/1/439495/100/0/threaded

www.securityfocus.com/bid/18881

www.vupen.com/english/advisories/2006/2744

exchange.xforce.ibmcloud.com/vulnerabilities/27671

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

Low

0.009 Low

EPSS

Percentile

83.0%

JSON

Related for CVE-2006-3531

nvd1 cvelist1