7.5
CVE-2006-0881
- EPSS 7.48%
- Veröffentlicht 24.02.2006 11:02:00
- Zuletzt bearbeitet 16.06.2026 22:21:28
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginMultiple PHP remote file include vulnerabilities in gorum/gorumlib.php in Noah's Classifieds 1.3, when register_globals is enabled, allow remote attackers to include arbitrary PHP files via the (1) upperTemplate and (2) lowerTemplate parameters, as demonstrated using the lowerTemplate parameter to index.php.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Phpoutsourcing ≫ Noahs Classifieds Version1.2
Phpoutsourcing ≫ Noahs Classifieds Version1.3
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 7.48% | 0.937 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://securitytracker.com/id?1015667
http://www.kapda.ir/advisory-268.html
http://www.securityfocus.com/archive/1/425783/100/0/threaded
http://www.vupen.com/english/advisories/2006/0703
http://www.securityfocus.com/bid/16780
https://exchange.xforce.ibmcloud.com/vulnerabilities/24899