Lucene search

[email protected]CVE-2006-5181

HistoryOct 10, 2006 - 4:06 a.m.

CVE-2006-5181

2006-10-1004:06:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2006-5181

php

remote file inclusion

joshua muheim

phpmywebmin 1.0

security vulnerability

nvd

7.8 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.016 Low

EPSS

Percentile

87.1%

JSON

Multiple PHP remote file inclusion vulnerabilities in Joshua Muheim phpMyWebmin 1.0 allow remote attackers to execute arbitrary PHP code via a URL in the target parameter in (1) change_preferences2.php, (2) create_file.php, (3) upload_local.php, and (4) upload_multi.php, different vectors than CVE-2006-5124.

CPENameOperatorVersion
joshua_muheim:phpmywebminjoshua muheim phpmywebmineq1.0

CPE	Name	Operator	Version
joshua_muheim:phpmywebmin	joshua muheim phpmywebmin	eq	1.0

References

secunia.com/advisories/22178

securityreason.com/securityalert/1693

www.securityfocus.com/archive/1/447489/100/0/threaded

exchange.xforce.ibmcloud.com/vulnerabilities/29285

www.exploit-db.com/exploits/2462

7.8 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.016 Low

EPSS

Percentile

87.1%

JSON

Related for CVE-2006-5181

cve1