CVE-2006-4653

EPSS 0.53%
Published 09.09.2006 00:04:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

(1) Amazing Little Poll and (2) Amazing Little Picture Poll store sensitive information under the web root with insufficient access control, which allows remote attackers to read the admin password via a direct request for the lp_settings file (lp_settings.inc or lp_settings.php).

Affected products Warnungen 0 Metrics 2 CWE 0 References 9

Data is provided by the National Vulnerability Database (NVD)

Amazing Little Picture Poll ≫ Amazing Little Picture Poll

Amazing Little Poll ≫ Amazing Little Poll

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.53%	0.664

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N

http://securityreason.com/securityalert/1527

http://www.securityfocus.com/archive/1/445081/100/0/threaded

http://www.securityfocus.com/bid/19837

https://exchange.xforce.ibmcloud.com/vulnerabilities/28737

http://secunia.com/advisories/21997

http://www.vupen.com/english/advisories/2006/3687

https://nvd.nist.gov/vuln/detail/CVE-2006-4653

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-4653

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-4653

EUVD