Lucene search

[email protected]CVE-2006-4237

HistoryAug 21, 2006 - 6:04 p.m.

CVE-2006-4237

2006-08-2118:04:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2006-4237

php

remote file inclusion

invisionix roaming system remote

irsr 0.2

vulnerability

7.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.051 Low

EPSS

Percentile

92.8%

JSON

PHP remote file inclusion vulnerability in pageheaderdefault.inc.php in Invisionix Roaming System Remote (IRSR) 0.2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the _sysSessionPath parameter.

CPENameOperatorVersion
invisionix_systems:invisionix_roaming_system_remoteinvisionix systems invisionix roaming system remotele0.2

CPE	Name	Operator	Version
invisionix_systems:invisionix_roaming_system_remote	invisionix systems invisionix roaming system remote	le	0.2

References

www.securityfocus.com/bid/19567

exchange.xforce.ibmcloud.com/vulnerabilities/28427

www.exploit-db.com/exploits/2199

7.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.051 Low

EPSS

Percentile

92.8%

JSON

Related for CVE-2006-4237

checkpoint_advisories2