Lucene search
HistorySep 23, 2006 - 1:07 a.m.
CVE-2006-4946
cve-2006-4946
php
remote file inclusion
cmsdevelopment
bcwb
vulnerability
nvd
5.1 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
7.6 High
AI Score
Confidence
High
0.082 Low
EPSS
Percentile
94.4%
PHP remote file inclusion vulnerability in include/startup.inc.php in CMSDevelopment Business Card Web Builder (BCWB) 0.99, and possibly 2.5 Beta and earlier, allows remote attackers to execute arbitrary PHP code via a URL in the root_path parameter.
Affected configurations
Node
cmsdevelopmentbusiness_card_web_builderRange≤2.5beta
ORcmsdevelopmentbusiness_card_web_builderMatch0.99
ORcmsdevelopmentbusiness_card_web_builderMatch2.3beta
Related
nvd
nvd
CVE-2006-4946
2006-09-23 01:07:00
CVE-2006-5816
2006-11-08 23:07:00
cvelist
cvelist
CVE-2006-4946
2006-09-23 01:00:00
CVE-2006-5816
2006-11-08 23:00:00
cve
cve
CVE-2006-5816
2006-11-08 23:07:00
5.1 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
7.6 High
AI Score
Confidence
High
0.082 Low
EPSS
Percentile
94.4%
Related for CVE-2006-4946