Lucene search

[email protected]CVE-2006-5803

HistoryNov 08, 2006 - 8:07 p.m.

CVE-2006-5803

2006-11-0820:07:00

[email protected]

web.nvd.nist.gov

php

remote file inclusion

vulnerability

mxbb smartor album

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8 High

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

82.1%

JSON

PHP remote file inclusion vulnerability in modules/mx_smartor/album.php in the mxBB Smartor Album module 1.02 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the module_root_path parameter.

Affected configurations

NVD

Node

mxbbmxbb_smartor_albumRange≤1.02

CPENameOperatorVersion
mxbb:mxbb_smartor_albummxbb mxbb smartor albumle1.02

CPE	Name	Operator	Version
mxbb:mxbb_smartor_album	mxbb mxbb smartor album	le	1.02

References

www.securityfocus.com/bid/20932

exchange.xforce.ibmcloud.com/vulnerabilities/30015

www.exploit-db.com/exploits/2723

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8 High

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

82.1%

JSON

Related for CVE-2006-5803

cvelist1 nvd1