Lucene search

[email protected]CVE-2006-4834

HistorySep 15, 2006 - 10:07 p.m.

CVE-2006-4834

2006-09-1522:07:00

[email protected]

web.nvd.nist.gov

cve-2006-4834

php

remote file inclusion

index.php

jule slootbeek

phpquiz 0.01

vulnerability

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.9 High

AI Score

Confidence

Low

0.117 Low

EPSS

Percentile

95.3%

JSON

PHP remote file inclusion vulnerability in index.php in Jule Slootbeek phpQuiz 0.01 allows remote attackers to execute arbitrary PHP code via a URL in the pagename parameter.

Affected configurations

NVD

Node

phpquizphpquizMatch0.01

CPENameOperatorVersion
phpquiz:phpquizphpquizeq0.01

CPE	Name	Operator	Version
phpquiz:phpquiz	phpquiz	eq	0.01

References

securityreason.com/securityalert/1587

www.nyubicrew.org/adv/solpot-adv-07.txt

www.securityfocus.com/archive/1/446039/100/0/threaded

www.securityfocus.com/bid/20019

www.vupen.com/english/advisories/2006/3611

exchange.xforce.ibmcloud.com/vulnerabilities/28947

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.9 High

AI Score

Confidence

Low

0.117 Low

EPSS

Percentile

95.3%

JSON

Related for CVE-2006-4834

cvelist1 nvd1