Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

2006-06-21T00:00:00

Description

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

Affected Software

CPE Name	Name	Version
	vbulletin	3.5
	ralf image gallery	0.7
	mpcs	0.2
	saphplesson	1.1
	singapore gallery	0.10
	vbzoom	1.11
	vbzoom	1.00
	e107	0.7

{"id": "SECURITYVULNS:VULN:6276", "bulletinFamily": "software", "title": "Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)", "description": "PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.", "published": "2006-06-21T00:00:00", "modified": "2006-06-21T00:00:00", "cvss": {"score": 6.0, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:6276", "reporter": " ", "references": ["https://vulners.com/securityvulns/securityvulns:doc:13258", "https://vulners.com/securityvulns/securityvulns:doc:13253", "https://vulners.com/securityvulns/securityvulns:doc:13256", "https://vulners.com/securityvulns/securityvulns:doc:13259", "https://vulners.com/securityvulns/securityvulns:doc:13262", "https://vulners.com/securityvulns/securityvulns:doc:13261", "https://vulners.com/securityvulns/securityvulns:doc:13268", "https://vulners.com/securityvulns/securityvulns:doc:13252", "https://vulners.com/securityvulns/securityvulns:doc:13264", "https://vulners.com/securityvulns/securityvulns:doc:13254", "https://vulners.com/securityvulns/securityvulns:doc:13265", "https://vulners.com/securityvulns/securityvulns:doc:13260", "https://vulners.com/securityvulns/securityvulns:doc:13251", "https://vulners.com/securityvulns/securityvulns:doc:13257", "https://vulners.com/securityvulns/securityvulns:doc:13255", "https://vulners.com/securityvulns/securityvulns:doc:13263", "https://vulners.com/securityvulns/securityvulns:doc:13267", "https://vulners.com/securityvulns/securityvulns:doc:13266"], "cvelist": ["CVE-2006-6995"], "type": "securityvulns", "lastseen": "2021-06-08T19:02:50", "edition": 2, "viewCount": 1, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2006-6995"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:13251", "SECURITYVULNS:DOC:13252", "SECURITYVULNS:DOC:13253", "SECURITYVULNS:DOC:13254", "SECURITYVULNS:DOC:13255", "SECURITYVULNS:DOC:13256", "SECURITYVULNS:DOC:13257", "SECURITYVULNS:DOC:13258", "SECURITYVULNS:DOC:13259", "SECURITYVULNS:DOC:13260", "SECURITYVULNS:DOC:13261", "SECURITYVULNS:DOC:13262", "SECURITYVULNS:DOC:13263", "SECURITYVULNS:DOC:13264", "SECURITYVULNS:DOC:13265", "SECURITYVULNS:DOC:13266", "SECURITYVULNS:DOC:13267", "SECURITYVULNS:DOC:13268"]}], "rev": 4}, "score": {"value": 4.8, "vector": "NONE"}, "backreferences": {"references": [{"type": "cve", "idList": ["CVE-2006-6995"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:13251", "SECURITYVULNS:DOC:13260", "SECURITYVULNS:DOC:13261", "SECURITYVULNS:DOC:13262", "SECURITYVULNS:DOC:13264", "SECURITYVULNS:DOC:13268"]}]}, "exploitation": null, "vulnersScore": 4.8}, "affectedSoftware": [{"name": "vbulletin", "operator": "eq", "version": "3.5"}, {"name": "ralf image gallery", "operator": "eq", "version": "0.7"}, {"name": "mpcs", "operator": "eq", "version": "0.2"}, {"name": "saphplesson", "operator": "eq", "version": "1.1"}, {"name": "singapore gallery", "operator": "eq", "version": "0.10"}, {"name": "vbzoom", "operator": "eq", "version": "1.11"}, {"name": "vbzoom", "operator": "eq", "version": "1.00"}, {"name": "e107", "operator": "eq", "version": "0.7"}], "immutableFields": [], "scheme": null, "cvss2": {}, "cvss3": {}, "_state": {"dependencies": 1645373439}}

{"cve": [{"lastseen": "2022-03-23T17:38:09", "description": "mycontacts.php in V3 Chat allows remote authenticated users to gain privileges as other users via a modified membername parameter.", "cvss3": {}, "published": "2007-02-12T11:28:00", "type": "cve", "title": "CVE-2006-6995", "cwe": ["NVD-CWE-Other"], "bulletinFamily": "NVD", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 6.8, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": true, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.0, "vectorString": "AV:N/AC:M/Au:S/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "SINGLE"}, "impactScore": 6.4, "obtainUserPrivilege": false}, "cvelist": ["CVE-2006-6995"], "modified": "2018-10-16T16:29:00", "cpe": ["cpe:/a:v3_chat:v3chat_instant_messenger:*"], "id": "CVE-2006-6995", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2006-6995", "cvss": {"score": 6.0, "vector": "AV:N/AC:M/Au:S/C:P/I:P/A:P"}, "cpe23": ["cpe:2.3:a:v3_chat:v3chat_instant_messenger:*:*:*:*:*:*:*:*"]}]}

Daily web applications security vulnerabilities summary &#40;PHP, ASP, JSP, CGI, Perl&#41;

Description

Affected Software

Related

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)