7.5

CVE-2006-1032

Eval injection vulnerability in the decode function in rpc_decoder.php for phpRPC 0.7 and earlier, as used by runcms, exoops, and possibly other programs, allows remote attackers to execute arbitrary PHP code via the base64 tag.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
PhprpcPhprpc Version0.7
PhprpcPhprpc Version0.8
PhprpcPhprpc Version0.9
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 3.48% 0.876
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/19028
http://secunia.com/advisories/19058
http://securityreason.com/securityalert/502
http://securitytracker.com/id?1015691
http://www.gulftech.org/?node=research&article_id=00105-02262006
Vendor Advisory
http://www.securityfocus.com/archive/1/426193
Vendor Advisory
http://www.securityfocus.com/bid/16833
http://www.vupen.com/english/advisories/2006/0745