Lucene search

PRIOn knowledge basePRION:CVE-2006-2507

HistoryMay 22, 2006 - 7:02 p.m.

Remote file inclusion

2006-05-2219:02:00

PRIOn knowledge base

www.prio-n.com

7.8 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.148 Low

EPSS

Percentile

95.6%

JSON

Multiple PHP remote file inclusion vulnerabilities in Teake Nutma Foing 0.2.0 through 0.7.0, as used with phpBB, allow remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter in (1) index.php, (2) song.php, (3) faq.php, (4) list.php, (5) gen_m3u.php, and (6) playlist.php.

CPENameOperatorVersion
foingeq0.5.0
foingeq0.4.0
foingeq0.2.0
foingeq0.6.0
foingeq0.7.0
foingeq0.3.0

Name	Operator	Version
foing	eq	0.5.0
foing	eq	0.4.0
foing	eq	0.2.0
foing	eq	0.6.0
foing	eq	0.7.0
foing	eq	0.3.0

References

secunia.com/advisories/20092

securityreason.com/securityalert/932

www.osvdb.org/25564

www.securityfocus.com/archive/1/433824/100/0/threaded

www.securityfocus.com/archive/1/435302/100/0/threaded

www.securityfocus.com/bid/17963

www.vupen.com/english/advisories/2006/1793

exchange.xforce.ibmcloud.com/vulnerabilities/26425

kurdishsecurity.blogspot.com/2006/05/kurdish-security-7-foing-remote-file.html

7.8 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.148 Low

EPSS

Percentile

95.6%

JSON

Related for PRION:CVE-2006-2507