Lucene search

[email protected]CVE-2006-4468

HistoryAug 31, 2006 - 8:04 p.m.

CVE-2006-4468

2006-08-3120:04:00

CWE-20

[email protected]

web.nvd.nist.gov

cve-2006-4468

joomla

unvalidated input

vulnerabilities

nvd

7 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.006 Low

EPSS

Percentile

79.1%

JSON

Multiple unspecified vulnerabilities in Joomla! before 1.0.11, related to unvalidated input, allow attackers to have an unknown impact via unspecified vectors involving the (1) mosMail, (2) JosIsValidEmail, and (3) josSpoofValue functions; (4) the lack of inclusion of globals.php in administrator/index.php; (5) the Admin User Manager; and (6) the poll module.

CPENameOperatorVersion
joomla:joomla\!joomla joomla\!lt1.0.11

CPE	Name	Operator	Version
joomla:joomla\!	joomla joomla\!	lt	1.0.11

References

secunia.com/advisories/21666

www.joomla.org/content/view/1841/78/

www.joomla.org/content/view/1843/74/

www.vupen.com/english/advisories/2006/3408

exchange.xforce.ibmcloud.com/vulnerabilities/28628

7 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.006 Low

EPSS

Percentile

79.1%

JSON

Related for CVE-2006-4468

nessus1