Lucene search

[email protected]CVE-2006-6281

HistoryDec 04, 2006 - 11:28 a.m.

CVE-2006-6281

2006-12-0411:28:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

php

vulnerability

remote file inclusion

dicshunary

8.3 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.05 Low

EPSS

Percentile

92.8%

JSON

PHP remote file inclusion vulnerability in check_status.php in dicshunary 0.1 alpha allows remote attackers to execute arbitrary PHP code via a URL in the dicshunary_root_path parameter.

CPENameOperatorVersion
dicshunary:dicshunarydicshunaryeq0.1_alpha

CPE	Name	Operator	Version
dicshunary:dicshunary	dicshunary	eq	0.1_alpha

References

securityreason.com/securityalert/1962

www.securityfocus.com/archive/1/452128/100/200/threaded

www.securityfocus.com/bid/21162

exchange.xforce.ibmcloud.com/vulnerabilities/30403

8.3 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.05 Low

EPSS

Percentile

92.8%

JSON