Lucene search
MitreCVELIST:CVE-2006-4677HistorySep 11, 2006 - 5:00 p.m.
CVE-2006-4677
2006-09-1117:00:00
mitre
www.cve.org
18
PHP remote file inclusion vulnerability in contrib/yabbse/poc.php in phpopenchat before 3.0.2 allows remote attackers to execute arbitrary PHP code via the sourcedir parameter. NOTE: this issue was disputed by a third-party researcher who stated that the _REQUEST parameters were dynamically unset at the beginning of the file. Another researcher noted, and CVE agrees, that the unset PHP function can be bypassed (CVE-2006-3017). If this issue is due to a vulnerability in PHP, then it should be excluded from CVE
Related
nvd
nvd
cve
cve
ubuntucve
ubuntucve
nessus
nessus
PmWiki < 2.1.21 Global Variables Overwriting
2006-09-06 00:00:00
e107 ibrowser.php zend_has_del() Function Remote Code Execution
2006-09-02 00:00:00
RHEL 3 / 4 : php (RHSA-2006:0568)
2006-07-13 00:00:00
cvelist
cvelist
prion
prion
Command injection
2007-10-09 18:17:00
Sql injection
2007-01-13 02:28:00
Sql injection
2009-09-11 16:30:00
suse
suse
bug fix in php4
2006-06-22 15:32:39
remote code execution in PHP4,PHP5
2006-06-14 16:37:08
debiancve
debiancve
CVE-2006-5116
2006-10-03 04:03:00
CVE-2007-0233
2007-01-13 02:28:00
redhat
redhat
(RHSA-2006:0567) php security update
2006-07-25 00:00:00
(RHSA-2006:0568) php security update
2006-07-12 00:00:00
centos
centos
php security update
2006-07-26 22:56:15
php security update
2006-07-12 19:14:58
openvas
openvas
Debian Security Advisory DSA 1206-1 (php4)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-1206-1)
2008-01-17 00:00:00
Ubuntu: Security Advisory (USN-320-1)
2022-08-26 00:00:00
debian
debian
[SECURITY] [DSA 1206-1] New php4 packages fix several vulnerabilities
2006-11-06 18:13:12
osv
osv
php4
2006-11-06 00:00:00
ubuntu
ubuntu
PHP vulnerabilities
2006-07-19 00:00:00