Lucene search

[email protected]CVE-2006-5471

HistoryOct 24, 2006 - 8:07 p.m.

CVE-2006-5471

2006-10-2420:07:00

[email protected]

web.nvd.nist.gov

cve-2006-5471

php

remote file inclusion

softerra

developer library

vulnerability

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.9 High

AI Score

Confidence

Low

0.066 Low

EPSS

Percentile

93.8%

JSON

PHP remote file inclusion vulnerability in example/lib/grid3.lib.php in Softerra PHP Developer Library 1.5.3 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the (1) cfg_dir and (2) lib_dir parameters.

Affected configurations

NVD

Node

softerraphp_developer_libraryRange≤1.5.3

CPENameOperatorVersion
softerra:php_developer_librarysofterra php developer libraryle1.5.3

CPE	Name	Operator	Version
softerra:php_developer_library	softerra php developer library	le	1.5.3

References

marc.info/?l=bugtraq&m=116051953607495&w=2

securitytracker.com/id?1017046

www.securityfocus.com/bid/20442

exchange.xforce.ibmcloud.com/vulnerabilities/29437

www.exploit-db.com/exploits/2511

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.9 High

AI Score

Confidence

Low

0.066 Low

EPSS

Percentile

93.8%

JSON

Related for CVE-2006-5471

nvd1 cvelist1