Lucene search

[email protected]CVE-2006-4129

HistoryAug 14, 2006 - 11:04 p.m.

CVE-2006-4129

2006-08-1423:04:00

[email protected]

web.nvd.nist.gov

cve-2006-4129

php

remote file inclusion

admin.webring.docs.php

com_webring

joomla

vulnerability

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.6 High

AI Score

Confidence

High

0.462 Medium

EPSS

Percentile

97.4%

JSON

PHP remote file inclusion vulnerability in admin.webring.docs.php in the Webring Component (com_webring) 1.0 and earlier for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the component_dir parameter.

Affected configurations

NVD

Node

joomlawebring_componentMatch1.0

CPENameOperatorVersion
joomla:webring_componentjoomla webring componenteq1.0

CPE	Name	Operator	Version
joomla:webring_component	joomla webring component	eq	1.0

References

secunia.com/advisories/21495

www.securityfocus.com/archive/1/443211/100/0/threaded

www.securityfocus.com/bid/19492

www.securityfocus.com/bid/19511

www.vupen.com/english/advisories/2006/3272

exchange.xforce.ibmcloud.com/vulnerabilities/28350

www.exploit-db.com/exploits/2177

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.6 High

AI Score

Confidence

High

0.462 Medium

EPSS

Percentile

97.4%

JSON

Related for CVE-2006-4129

checkpoint_advisories2 cvelist1 nvd1