Lucene search

[email protected]CVE-2006-4076

HistoryAug 11, 2006 - 1:04 a.m.

CVE-2006-4076

2006-08-1101:04:00

[email protected]

web.nvd.nist.gov

cve

php

remote file inclusion

vulnerability

wim fleischhauer

docpile

execute arbitrary code

init_path

nvd

5.1 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

7.4 High

AI Score

Confidence

Low

0.024 Low

EPSS

Percentile

89.9%

JSON

Multiple PHP remote file inclusion vulnerabilities in Wim Fleischhauer docpile: wim’s edition (docpile:we) 0.2.2 allow remote attackers to execute arbitrary PHP code via a URL in the INIT_PATH parameter to (1) lib/access.inc.php, (2) lib/folders.inc.php, (3) lib/init.inc.php or (4) lib/templates.inc.php. NOTE: the provenance of this information is unknown; the details are obtained from third party information.

Affected configurations

NVD

Node

wim_fleischhauerdocpile_weMatch0.2.2

CPENameOperatorVersion
wim_fleischhauer:docpile_wewim fleischhauer docpile weeq0.2.2

CPE	Name	Operator	Version
wim_fleischhauer:docpile_we	wim fleischhauer docpile we	eq	0.2.2

References

secunia.com/advisories/21412

www.osvdb.org/27863

www.osvdb.org/27864

www.osvdb.org/27865

www.osvdb.org/27866

www.vupen.com/english/advisories/2006/3222

5.1 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

7.4 High

AI Score

Confidence

Low

0.024 Low

EPSS

Percentile

89.9%

JSON

Related for CVE-2006-4076

checkpoint_advisories1 nvd1 cvelist1