CVE-2006-4159

Published: 16/08/2006 Updated: 19/10/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Multiple PHP remote file inclusion vulnerabilities in Chaussette 080706 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the _BASE parameter to scripts in Classes/ including (1) Evenement.php, (2) Event.php, (3) Event_for_month.php, (4) Event_for_week.php, (5) My_Log.php, (6) My_Smarty.php, and possibly (7) Event_for_month_per_day.php.

Vulnerable Product	Search on Vulmon	Subscribe to Product
chaussette chaussette

Chaussette Remote File Inclusion CreW: ToXiC Bug Found By Drago84 Source Code: freshmeatnet/redir/chaussette/64502/url_zip/chaussettezip Page Affect /Classes/Evenementphp /Classes/Eventphp /Classes/Event_for_monthphp /Classes/Event_for_month_per_dayphp /Classes/Event_for_weekphp /Classes/My_Logphp /Classes/My_Smartyphp Problem I ...

CWE-94 http://www.securityfocus.com/bid/19480 http://secunia.com/advisories/21489 http://www.osvdb.org/27897 http://www.osvdb.org/27898 http://www.osvdb.org/27899 http://www.osvdb.org/27900 http://www.osvdb.org/27901 http://www.osvdb.org/27902 http://www.vupen.com/english/advisories/2006/3269 https://exchange.xforce.ibmcloud.com/vulnerabilities/28327 https://www.exploit-db.com/exploits/2169 https://nvd.nist.gov https://www.exploit-db.com/exploits/2169/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2006-4159

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect