Lucene search
MitreCVE-2006-5384HistoryOct 18, 2006 - 7:07 p.m.
CVE-2006-5384
2006-10-1819:07:00
mitre
web.nvd.nist.gov
29
cve
2006
5384
php
remote file inclusion
vulnerability
cds software consortium
cds agenda
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.9
Confidence
Low
EPSS
0.086
Percentile
94.5%
PHP remote file inclusion vulnerability in modification/SendAlertEmail.php in CDS Software Consortium CDS Agenda 4.2.9 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the AGE parameter.
Affected configurations
Node
cds_software_consortiumcds_agendaRange≤4.2.9
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cds_software_consortium | cds_agenda | * | cpe:2.3:a:cds_software_consortium:cds_agenda:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2006-5384
2006-10-18 19:00:00
exploitdb
exploitdb
Cdsagenda 4.2.9 - 'SendAlertEmail.php' File Inclusion
2006-10-13 00:00:00
nvd
nvd
CVE-2006-5384
2006-10-18 19:07:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.9
Confidence
Low
EPSS
0.086
Percentile
94.5%
Related for CVE-2006-5384