Lucene search

[email protected]CVE-2006-5788

HistoryNov 07, 2006 - 11:07 p.m.

CVE-2006-5788

2006-11-0723:07:00

CWE-94

[email protected]

web.nvd.nist.gov

cve

2006

5788

php

remote

file inclusion

vulnerability

iprimal forums

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8 High

AI Score

Confidence

Low

0.092 Low

EPSS

Percentile

94.7%

JSON

PHP remote file inclusion vulnerability in (1) index.php and (2) admin/index.php in IPrimal Forums as of 20061105 allows remote attackers to execute arbitrary PHP code via a URL in the p parameter.

Affected configurations

NVD

Node

iprimaliprimal_forums

CPENameOperatorVersion
iprimal:iprimal_forumsiprimal iprimal forumseq*

CPE	Name	Operator	Version
iprimal:iprimal_forums	iprimal iprimal forums	eq	*

References

secunia.com/advisories/22757

www.osvdb.org/30228

www.securityfocus.com/archive/1/452137/100/200/threaded

www.securityfocus.com/bid/20966

www.vupen.com/english/advisories/2006/4383

exchange.xforce.ibmcloud.com/vulnerabilities/30074

www.exploit-db.com/exploits/2739

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8 High

AI Score

Confidence

Low

0.092 Low

EPSS

Percentile

94.7%

JSON

Related for CVE-2006-5788

nvd1 cvelist1