ID OSVDB:30204
Type osvdb
Reporter OSVDB
Modified 2006-11-04T07:33:55
Description
Manual Testing Notes
/index.php?rns[]=
/index.php?pag[]=
References:
Vendor URL: http://www.rhadrix.com/
Secunia Advisory ID:22715
Related OSVDB ID: 30203
Other Advisory URL: http://s-a-p.ca/index.php?page=OurAdvisories&id=5
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-11/0066.html
ISS X-Force ID: 30012
CVE-2006-5759
{"bulletinFamily": "software", "viewCount": 4, "reporter": "OSVDB", "references": [], "description": "## Manual Testing Notes\n/index.php?rns[]=\n/index.php?pag[]=\n## References:\nVendor URL: http://www.rhadrix.com/\n[Secunia Advisory ID:22715](https://secuniaresearch.flexerasoftware.com/advisories/22715/)\n[Related OSVDB ID: 30203](https://vulners.com/osvdb/OSVDB:30203)\nOther Advisory URL: http://s-a-p.ca/index.php?page=OurAdvisories&id=5\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-11/0066.html\nISS X-Force ID: 30012\n[CVE-2006-5759](https://vulners.com/cve/CVE-2006-5759)\n", "affectedSoftware": [], "href": "https://vulners.com/osvdb/OSVDB:30204", "modified": "2006-11-04T07:33:55", "enchantments": {"score": {"value": 6.0, "vector": "NONE", "modified": "2017-04-28T13:20:26", "rev": 2}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2006-5759"]}], "modified": "2017-04-28T13:20:26", "rev": 2}, "vulnersScore": 6.0}, "id": "OSVDB:30204", "title": "If-CMS index.php Multiple Variable Path Disclosure", "edition": 1, "published": "2006-11-04T07:33:55", "type": "osvdb", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "cvelist": ["CVE-2006-5759"], "lastseen": "2017-04-28T13:20:26"}
{"cve": [{"lastseen": "2021-02-02T05:27:25", "description": "index.php in Rhadrix If-CMS, possibly 1.01 and 2.07, allows remote attackers to obtain the full path of the web server via empty (1) rns[] or (2) pag[] arguments, which reveals the path in an error message.", "edition": 4, "cvss3": {}, "published": "2006-11-06T22:07:00", "title": "CVE-2006-5759", "type": "cve", "cwe": ["NVD-CWE-Other"], "bulletinFamily": "NVD", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 10.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "PARTIAL", "availabilityImpact": "NONE", "integrityImpact": "NONE", "baseScore": 5.0, "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 2.9, "obtainUserPrivilege": false}, "cvelist": ["CVE-2006-5759"], "modified": "2018-10-17T21:44:00", "cpe": ["cpe:/a:rhadrix:if-cms:1.01", "cpe:/a:rhadrix:if-cms:2.07"], "id": "CVE-2006-5759", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2006-5759", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}, "cpe23": ["cpe:2.3:a:rhadrix:if-cms:2.07:*:*:*:*:*:*:*", "cpe:2.3:a:rhadrix:if-cms:1.01:*:*:*:*:*:*:*"]}]}
