Lucene search

[email protected]CVE-2006-4051

HistoryAug 10, 2006 - 12:04 a.m.

CVE-2006-4051

2006-08-1000:04:00

[email protected]

web.nvd.nist.gov

cve-2006-4051

php

remote file inclusion

turnkey web tools

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

Low

0.056 Low

EPSS

Percentile

93.3%

JSON

PHP remote file inclusion vulnerability in global.php in Turnkey Web Tools PHP Live Helper 2.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the abs_path parameter.

Affected configurations

NVD

Node

turnkey_web_toolsphp_live_helperRange≤2.0

turnkey_web_toolsphp_live_helperMatch1.8

turnkey_web_toolsphp_live_helperMatch2.0_beta

CPENameOperatorVersion
turnkey_web_tools:php_live_helperturnkey web tools php live helperle2.0
turnkey_web_tools:php_live_helperturnkey web tools php live helpereq1.8
turnkey_web_tools:php_live_helperturnkey web tools php live helpereq2.0_beta

CPE	Name	Operator	Version
turnkey_web_tools:php_live_helper	turnkey web tools php live helper	le	2.0
turnkey_web_tools:php_live_helper	turnkey web tools php live helper	eq	1.8
turnkey_web_tools:php_live_helper	turnkey web tools php live helper	eq	2.0_beta

References

advisories.echo.or.id/adv/adv43-matdhule-2006.txt

securityreason.com/securityalert/1369

securitytracker.com/id?1016639

www.securityfocus.com/archive/1/442219/100/0/threaded

www.securityfocus.com/bid/19349

www.vupen.com/english/advisories/2006/3194

www.exploit-db.com/exploits/2120

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

Low

0.056 Low

EPSS

Percentile

93.3%

JSON

Related for CVE-2006-4051

checkpoint_advisories2 cvelist1 nvd1 nessus1