Lucene search

[email protected]CVE-2006-4237

HistoryAug 21, 2006 - 6:04 p.m.

CVE-2006-4237

2006-08-2118:04:00

[email protected]

web.nvd.nist.gov

cve-2006-4237

php

remote file inclusion

invisionix roaming system remote

irsr 0.2

vulnerability

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.6 High

AI Score

Confidence

High

0.051 Low

EPSS

Percentile

93.0%

JSON

PHP remote file inclusion vulnerability in pageheaderdefault.inc.php in Invisionix Roaming System Remote (IRSR) 0.2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the _sysSessionPath parameter.

Affected configurations

NVD

Node

invisionix_systemsinvisionix_roaming_system_remoteRange≤0.2

CPENameOperatorVersion
invisionix_systems:invisionix_roaming_system_remoteinvisionix systems invisionix roaming system remotele0.2

CPE	Name	Operator	Version
invisionix_systems:invisionix_roaming_system_remote	invisionix systems invisionix roaming system remote	le	0.2

References

www.securityfocus.com/bid/19567

exchange.xforce.ibmcloud.com/vulnerabilities/28427

www.exploit-db.com/exploits/2199

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.6 High

AI Score

Confidence

High

0.051 Low

EPSS

Percentile

93.0%

JSON

Related for CVE-2006-4237

cvelist1 checkpoint_advisories2 nvd1