Lucene search

[email protected]CVE-2006-5426

HistoryOct 20, 2006 - 5:07 p.m.

CVE-2006-5426

2006-10-2017:07:00

[email protected]

web.nvd.nist.gov

cve-2006-5426

php

remote file inclusion

vulnerability

local calendar system 1.1

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.9 High

AI Score

Confidence

Low

0.086 Low

EPSS

Percentile

94.5%

JSON

PHP remote file inclusion vulnerability in lib/lcUser.php in LoCal Calendar System 1.1 remote attackers to execute arbitrary PHP code via a URL in the LIBDIR parameter.

Affected configurations

NVD

Node

local_calendar_systemlocal_calendar_systemMatch1.1

CPENameOperatorVersion
local_calendar_system:local_calendar_systemlocal calendar systemeq1.1

CPE	Name	Operator	Version
local_calendar_system:local_calendar_system	local calendar system	eq	1.1

References

secunia.com/advisories/22484

www.securityfocus.com/bid/20619

www.vupen.com/english/advisories/2006/4100

exchange.xforce.ibmcloud.com/vulnerabilities/29665

www.exploit-db.com/exploits/2595

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.9 High

AI Score

Confidence

Low

0.086 Low

EPSS

Percentile

94.5%

JSON

Related for CVE-2006-5426

cvelist1 nvd1