Published: 15/06/2006 Updated: 18/10/2018
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Summary

** DISPUTED ** PHP remote file inclusion vulnerability in talkbox.php in Amr Talkbox allows remote malicious users to execute arbitrary PHP code via a URL in the direct parameter. NOTE: this issue has been disputed by CVE, since the $direct variable is set to a static value just before the include statement.

Affected Products

Vendor Product Versions
Amr TalkboxAmr Talkbox*