Lucene search

[email protected]CVE-2006-5124

HistoryOct 03, 2006 - 4:03 a.m.

CVE-2006-5124

2006-10-0304:03:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve

php

remote file inclusion

vulnerability

phpmywebmin

security

7.9 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.03 Low

EPSS

Percentile

90.9%

JSON

Multiple PHP remote file inclusion vulnerabilities in Joshua Muheim phpMyWebmin 1.0 allow remote attackers to execute arbitrary PHP code via a URL in the (1) target and (2) action parameters in window.php, and possibly the (3) target parameter in home.php.

CPENameOperatorVersion
joshua_muheim:phpmywebminjoshua muheim phpmywebmineq1.0

CPE	Name	Operator	Version
joshua_muheim:phpmywebmin	joshua muheim phpmywebmin	eq	1.0

References

kernel-32.blogspot.com/2006/09/php-mywebmin-10-remote-file-include.html

secunia.com/advisories/22178

www.securityfocus.com/bid/20264

www.vupen.com/english/advisories/2006/3846

exchange.xforce.ibmcloud.com/vulnerabilities/29258

www.exploit-db.com/exploits/2451

7.9 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.03 Low

EPSS

Percentile

90.9%

JSON

Related for CVE-2006-5124

cve1