CVE-2006-4034

Опубликовано: 09 авг. 2006

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

PHP remote file inclusion vulnerability in include/html/config.php in ModernGigabyte ModernBill 1.6 allows remote attackers to execute arbitrary PHP code via a URL in the DIR parameter.

Ссылки

http://www.securityfocus.com/archive/1/442126/100/0/threaded
http://www.securityfocus.com/bid/19335
Exploit
http://www.solpotcrew.org/adv/solpot-adv-04.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/28207
http://www.securityfocus.com/archive/1/442126/100/0/threaded
http://www.securityfocus.com/bid/19335
Exploit
http://www.solpotcrew.org/adv/solpot-adv-04.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/28207

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:moderngigabyte:modernbill:1.6:*:*:*:*:*:*:*

EPSS

Процентиль: 81%

0.01503

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-q8hx-4ph9-479g

github

почти 4 года назад