Lucene search

K
nvd[email protected]NVD:CVE-2006-5149
HistoryOct 05, 2006 - 4:04 a.m.

CVE-2006-5149

2006-10-0504:04:00
CWE-22
web.nvd.nist.gov
5

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.3

Confidence

Low

EPSS

0.016

Percentile

87.4%

Multiple directory traversal vulnerabilities in OpenBiblio before 0.5.2 allow remote attackers to include and execute arbitrary local files via a … (dot dot) in (1) the page parameter to shared/help.php or (2) the tab parameter to shared/header.php.

Affected configurations

Nvd
Node
openbiblioopenbiblioRange0.5.1
OR
openbiblioopenbiblioMatch0.1.0
OR
openbiblioopenbiblioMatch0.2.1
OR
openbiblioopenbiblioMatch0.3.0
OR
openbiblioopenbiblioMatch0.4.0
OR
openbiblioopenbiblioMatch0.5.0
VendorProductVersionCPE
openbiblioopenbiblio*cpe:2.3:a:openbiblio:openbiblio:*:*:*:*:*:*:*:*
openbiblioopenbiblio0.1.0cpe:2.3:a:openbiblio:openbiblio:0.1.0:*:*:*:*:*:*:*
openbiblioopenbiblio0.2.1cpe:2.3:a:openbiblio:openbiblio:0.2.1:*:*:*:*:*:*:*
openbiblioopenbiblio0.3.0cpe:2.3:a:openbiblio:openbiblio:0.3.0:*:*:*:*:*:*:*
openbiblioopenbiblio0.4.0cpe:2.3:a:openbiblio:openbiblio:0.4.0:*:*:*:*:*:*:*
openbiblioopenbiblio0.5.0cpe:2.3:a:openbiblio:openbiblio:0.5.0:*:*:*:*:*:*:*

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.3

Confidence

Low

EPSS

0.016

Percentile

87.4%

Related for NVD:CVE-2006-5149