Lucene search
HistoryJul 27, 2006 - 1:04 a.m.
CVE-2006-3819
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.7
Confidence
Low
EPSS
0.111
Percentile
95.2%
Eval injection vulnerability in the configure script in TWiki 4.0.0 through 4.0.4 allows remote attackers to execute arbitrary Perl code via an HTTP POST request containing a parameter name starting with “TYPEOF”.
Affected configurations
Node
twikitwikiMatch4.0
ORtwikitwikiMatch4.0.0
ORtwikitwikiMatch4.0.1
ORtwikitwikiMatch4.0.2
ORtwikitwikiMatch4.0.3
ORtwikitwikiMatch4.0.4
| Vendor | Product | Version | CPE |
|---|---|---|---|
| twiki | twiki | 4.0 | cpe:2.3:a:twiki:twiki:4.0:*:*:*:*:*:*:* |
| twiki | twiki | 4.0.0 | cpe:2.3:a:twiki:twiki:4.0.0:*:*:*:*:*:*:* |
| twiki | twiki | 4.0.1 | cpe:2.3:a:twiki:twiki:4.0.1:*:*:*:*:*:*:* |
| twiki | twiki | 4.0.2 | cpe:2.3:a:twiki:twiki:4.0.2:*:*:*:*:*:*:* |
| twiki | twiki | 4.0.3 | cpe:2.3:a:twiki:twiki:4.0.3:*:*:*:*:*:*:* |
| twiki | twiki | 4.0.4 | cpe:2.3:a:twiki:twiki:4.0.4:*:*:*:*:*:*:* |
Related
seebug
seebug
TWiki <= 4.0.4 (Configure Script) Remote Code Execution Exploit (meta)
2006-08-02 00:00:00
cve
cve
CVE-2006-3819
2006-07-27 01:04:00
exploitdb
exploitdb
TWiki 4.0.4 - Configure Script Remote Code Execution (Metasploit)
2006-08-02 00:00:00
TWiki 4.0.4 - 'configure' Remote Command Execution
2006-08-07 00:00:00
cvelist
cvelist
CVE-2006-3819
2006-07-27 01:00:00
zdt
zdt
TWiki <= 4.0.4 (Configure Script) Remote Code Execution Exploit (meta)
2006-08-02 00:00:00
ubuntucve
ubuntucve
CVE-2006-3819
2006-07-27 00:00:00
nessus
nessus
TWiki configure Script Arbitrary Command Execution
2006-07-31 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.7
Confidence
Low
EPSS
0.111
Percentile
95.2%
Related for NVD:CVE-2006-3819