exploitDog

CVE-2006-2871

Опубликовано: 06 июн. 2006

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

PHP remote file inclusion vulnerability in include/common.php in CyBoards PHP Lite 1.25 allows remote attackers to execute arbitrary PHP code via a URL in the script_path parameter. NOTE: CVE disputes this issue, since $script_path is set to a constant value

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:cyboards:cyboards_php_lite:1.25:*:*:*:*:*:*:*

EPSS

Процентиль: 92%

0.08985

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-ch2r-cw28-6f3m

github

почти 4 года назад

** DISPUTED ** PHP remote file inclusion vulnerability in include/common.php in CyBoards PHP Lite 1.25 allows remote attackers to execute arbitrary PHP code via a URL in the script_path parameter. NOTE: CVE disputes this issue, since $script_path is set to a constant value.

EPSS

Процентиль: 92%

0.08985

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other