Lucene search

[email protected]CVE-2006-7046

HistoryFeb 24, 2007 - 12:28 a.m.

CVE-2006-7046

2007-02-2400:28:00

CWE-94

[email protected]

web.nvd.nist.gov

cve-2006-7046

php

remote file inclusion

vulnerability

cmpro.intern

clan manager pro

cmpro

8.1 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.007 Low

EPSS

Percentile

79.3%

JSON

PHP remote file inclusion vulnerability in cmpro.intern/login.inc.php for Clan Manager Pro (CMPRO) 1.1.0 allows remote attackers to execute arbitrary PHP code via a URL in the rootpath parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

CPENameOperatorVersion
clan_manager_pro:clan_manager_proclan manager proeq1.1.0

CPE	Name	Operator	Version
clan_manager_pro:clan_manager_pro	clan manager pro	eq	1.1.0

References

secunia.com/advisories/20484

www.osvdb.org/26224

8.1 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.007 Low

EPSS

Percentile

79.3%

JSON