Lucene search
HistoryNov 01, 2006 - 12:07 a.m.
CVE-2006-5634
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.6
Confidence
Low
EPSS
0.114
Percentile
95.2%
Multiple PHP remote file inclusion vulnerabilities in phpProfiles 2.1 Beta allow remote attackers to execute arbitrary PHP code via a URL in the (1) reqpath parameter to (a) body.inc.php and (b) body_blog.inc.php in users/include/; or the (2) usrinc parameter in users/include/upload_ht.inc.php.
Affected configurations
Node
phpprofilesphpprofilesRange≤2.1_beta
| Vendor | Product | Version | CPE |
|---|---|---|---|
| phpprofiles | phpprofiles | * | cpe:2.3:a:phpprofiles:phpprofiles:*:*:*:*:*:*:*:* |
Related
cve
cve
CVE-2006-5634
2006-11-01 00:07:00
CVE-2006-6740
2006-12-26 23:28:00
exploitdb
exploitdb
phpProfiles 2.1 Beta - Multiple Remote File Inclusions
2006-10-30 00:00:00
cvelist
cvelist
CVE-2006-5634
2006-11-01 00:00:00
CVE-2006-6740
2006-12-26 23:00:00
nvd
nvd
CVE-2006-6740
2006-12-26 23:28:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.6
Confidence
Low
EPSS
0.114
Percentile
95.2%
Related for NVD:CVE-2006-5634