Lucene search

[email protected]CVE-2006-4369

HistoryAug 26, 2006 - 9:04 p.m.

CVE-2006-4369

2006-08-2621:04:00

[email protected]

web.nvd.nist.gov

cve

2006

4369

absolute path traversal

integramod portal

php

vulnerability

security

2.6 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:N/A:N

7.1 High

AI Score

Confidence

Low

0.011 Low

EPSS

Percentile

84.9%

JSON

Absolute path traversal vulnerability in includes/functions_portal.php in IntegraMOD Portal 2.x and earlier, when magic_quotes_gpc is disabled, allows remote attackers to read arbitrary files via an absolute pathname in the phpbb_root_path parameter.

Affected configurations

NVD

Node

integramodintegramod_portalMatch2.0

CPENameOperatorVersion
integramod:integramod_portalintegramod integramod portaleq2.0

CPE	Name	Operator	Version
integramod:integramod_portal	integramod integramod portal	eq	2.0

References

marc.info/?l=full-disclosure&m=115641052418714&w=2

www.nukedx.com/?viewdoc=47

www.securityfocus.com/archive/1/444207/100/0/threaded

www.securityfocus.com/bid/19689

exchange.xforce.ibmcloud.com/vulnerabilities/28547

www.exploit-db.com/exploits/2250

2.6 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:N/A:N

7.1 High

AI Score

Confidence

Low

0.011 Low

EPSS

Percentile

84.9%

JSON

Related for CVE-2006-4369

cvelist1 nvd1