Lucene search

[email protected]NVD:CVE-2006-2285

HistoryMay 10, 2006 - 2:14 a.m.

CVE-2006-2285

2006-05-1002:14:00

[email protected]

web.nvd.nist.gov

5.1 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

High

0.088 Low

EPSS

Percentile

94.6%

JSON

PHP remote file inclusion vulnerability in authldap.php in Dokeos 1.6.4 allows remote attackers to execute arbitrary PHP code via a URL in the includePath parameter.

Affected configurations

NVD

Node

dokeosopen_source_learning_and_knowledge_management_toolMatch1.4

dokeosopen_source_learning_and_knowledge_management_toolMatch1.5

dokeosopen_source_learning_and_knowledge_management_toolMatch1.5.3

dokeosopen_source_learning_and_knowledge_management_toolMatch1.5.4

dokeosopen_source_learning_and_knowledge_management_toolMatch1.5.5

dokeosopen_source_learning_and_knowledge_management_toolMatch1.6.4

dokeosopen_source_learning_and_knowledge_management_toolMatch1.6_rc2

References

secunia.com/advisories/19980

securityreason.com/securityalert/856

securitytracker.com/id?1016089

www.osvdb.org/25437

www.securityfocus.com/archive/1/433247/100/0/threaded

www.securityfocus.com/bid/17873

www.securityfocus.com/bid/17915

www.vupen.com/english/advisories/2006/1680

exchange.xforce.ibmcloud.com/vulnerabilities/26274

5.1 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

High

0.088 Low

EPSS

Percentile

94.6%

JSON

Related for NVD:CVE-2006-2285

cvelist1 prion1 cve1