Lucene search
MitreCVE-2006-4234HistoryAug 18, 2006 - 8:04 p.m.
CVE-2006-4234
2006-08-1820:04:00
mitre
web.nvd.nist.gov
31
cve
2006
4234
php
remote file inclusion
dotproject
vulnerability
security
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.6
Confidence
High
EPSS
0.056
Percentile
93.3%
PHP remote file inclusion vulnerability in classes/query.class.php in dotProject 2.0.4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the baseDir parameter.
Affected configurations
Node
dotprojectdotprojectMatch2.0
ORdotprojectdotprojectMatch2.0.1
ORdotprojectdotprojectMatch2.0.2
ORdotprojectdotprojectMatch2.0.4
| Vendor | Product | Version | CPE |
|---|---|---|---|
| dotproject | dotproject | 2.0 | cpe:2.3:a:dotproject:dotproject:2.0:*:*:*:*:*:*:* |
| dotproject | dotproject | 2.0.1 | cpe:2.3:a:dotproject:dotproject:2.0.1:*:*:*:*:*:*:* |
| dotproject | dotproject | 2.0.2 | cpe:2.3:a:dotproject:dotproject:2.0.2:*:*:*:*:*:*:* |
| dotproject | dotproject | 2.0.4 | cpe:2.3:a:dotproject:dotproject:2.0.4:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2006-4234
2006-08-18 20:04:00
exploitdb
exploitdb
dotProject 2.0.4 - 'baseDir' Remote File Inclusion
2006-08-16 00:00:00
cvelist
cvelist
CVE-2006-4234
2006-08-18 19:55:00
nessus
nessus
dotProject Multiple Scripts Remote File Inclusion
2006-02-15 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.6
Confidence
High
EPSS
0.056
Percentile
93.3%
Related for CVE-2006-4234