Описание
Multiple PHP remote file inclusion vulnerabilities in iWonder Designs Storystream 0.4.0.0 allow remote attackers to execute arbitrary PHP code via a URL in the baseDir parameter to (1) mysql.php and (2) mysqli.php in include/classes/pear/DB/.
Multiple PHP remote file inclusion vulnerabilities in iWonder Designs Storystream 0.4.0.0 allow remote attackers to execute arbitrary PHP code via a URL in the baseDir parameter to (1) mysql.php and (2) mysqli.php in include/classes/pear/DB/.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-5893
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30191
- https://www.exploit-db.com/exploits/2767
- http://marc.info/?l=bugtraq&m=116374093504388&w=2
- http://securitytracker.com/id?1017252
- http://sourceforge.net/project/shownotes.php?release_id=463892&group_id=95217
- http://www.securityfocus.com/bid/21012
- http://www.vupen.com/english/advisories/2006/4480
EPSS
Процентиль: 92%
0.08985
Низкий
CVE ID
Связанные уязвимости
nvd
около 19 лет назад
Multiple PHP remote file inclusion vulnerabilities in iWonder Designs Storystream 0.4.0.0 allow remote attackers to execute arbitrary PHP code via a URL in the baseDir parameter to (1) mysql.php and (2) mysqli.php in include/classes/pear/DB/.
EPSS
Процентиль: 92%
0.08985
Низкий