Lucene search

[email protected]CVE-2006-7044

HistoryFeb 24, 2007 - 12:28 a.m.

CVE-2006-7044

2007-02-2400:28:00

[email protected]

web.nvd.nist.gov

php

remote file inclusion

vulnerability

clan manager pro

cmpro

security

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.9 High

AI Score

Confidence

Low

0.011 Low

EPSS

Percentile

84.5%

JSON

PHP remote file inclusion vulnerability in comment.core.inc.php in Clan Manager Pro (CMPRO) 1.11 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the sitepath parameter.

Affected configurations

NVD

Node

cmpro_teamclan_manager_proRange≤1.11

CPENameOperatorVersion
cmpro_team:clan_manager_procmpro team clan manager prole1.11

CPE	Name	Operator	Version
cmpro_team:clan_manager_pro	cmpro team clan manager pro	le	1.11

References

sx02.coresec.de/advisories/150.txt

www.osvdb.org/26223

www.vupen.com/english/advisories/2006/2195

exchange.xforce.ibmcloud.com/vulnerabilities/27059

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.9 High

AI Score

Confidence

Low

0.011 Low

EPSS

Percentile

84.5%

JSON

Related for CVE-2006-7044

nvd1 cvelist1