Lucene search

[email protected]NVD:CVE-2006-0970

HistoryMar 03, 2006 - 11:02 a.m.

CVE-2006-0970

2006-03-0311:02:00

[email protected]

web.nvd.nist.gov

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

High

0.012 Low

EPSS

Percentile

85.0%

JSON

PHP remote file inclusion vulnerability in index.php in one or more ActiveCampaign products, possibly SupportTrio, allows remote attackers to include and execute arbitrary files via the page parameter.

Affected configurations

NVD

Node

activecampaign1-2-all

activecampaigngeneral

activecampaignisalient

activecampaignknowledgebuilder

activecampaignsupporttrio

activecampaignvisualedit

References

securityreason.com/securityalert/505

www.osvdb.org/3228

www.securityfocus.com/archive/1/426214/100/0/threaded

exchange.xforce.ibmcloud.com/vulnerabilities/24989

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

High

0.012 Low

EPSS

Percentile

85.0%

JSON

Related for NVD:CVE-2006-0970

prion1 cvelist1 cve1