7.5
CVE-2006-1959
- EPSS 16.89%
- Published 21.04.2006 10:02:00
- Last modified 03.04.2025 01:03:51
- Source cve@mitre.org
- Teams watchlist Login
- Open Login
PHP remote file inclusion vulnerability in direct.php in ActualScripts ActualAnalyzer Lite 2.72 and earlier, Gold 7.63 and earlier, and Server 8.23 and earlier allows remote attackers to execute arbitrary code via a URL in the rf parameter.
Data is provided by the National Vulnerability Database (NVD)
Actualscripts ≫ Actualanalyzer Editionserver Version <= 8.23
Actualscripts ≫ Actualanalyzer Version2.72 Editionlite
Actualscripts ≫ Actualanalyzer Version7.63 Updategold
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 16.89% | 0.947 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|