Lucene search
HistoryAug 29, 2006 - 11:04 p.m.
CVE-2006-4445
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.4
Confidence
Low
EPSS
0.024
Percentile
89.9%
Multiple PHP remote file inclusion vulnerabilities in CuteNews 1.3.x allow remote attackers to execute arbitrary PHP code via a URL in the cutepath parameter to (1) show_news.php or (2) search.php. NOTE: CVE analysis as of 20060829 has not identified any scenarios in which these vectors could result in remote file inclusion
Affected configurations
Node
cutephpcutenewsMatch1.3
ORcutephpcutenewsMatch1.3.1
ORcutephpcutenewsMatch1.3.2
ORcutephpcutenewsMatch1.3.6
Related
cvelist
cvelist
CVE-2006-4445
2006-08-29 23:00:00
CVE-2007-1153
2007-02-27 18:00:00
cve
cve
CVE-2006-4445
2006-08-29 23:04:00
CVE-2007-1153
2007-03-02 21:18:00
securityvulns
securityvulns
nvd
nvd
CVE-2007-1153
2007-03-02 21:18:00
prion
prion
Remote file inclusion
2007-03-02 21:18:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.4
Confidence
Low
EPSS
0.024
Percentile
89.9%
Related for NVD:CVE-2006-4445