CVE

Id
20989  
CVE No.
CVE-2006-4885  
Status
Candidate  
Description
PHP remote file inclusion vulnerability in Shadowed Portal 5.599 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the root parameter in (1) footer.php and (2) header.php. NOTE: the provenance of this information is unknown; the details are obtained from third party information. The bottom.php parameter is already covered by CVE-2006-4826.  
Phase
Assigned (20060919)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
198951 20989 CVE-2006-4885 BID:84177  View
198952 20989 CVE-2006-4885 URL:http://www.securityfocus.com/bid/84177  View
198953 20989 CVE-2006-4885 VUPEN:ADV-2006-3629  View
198954 20989 CVE-2006-4885 URL:http://www.vupen.com/english/advisories/2006/3629  View
198955 20989 CVE-2006-4885 OSVDB:28836  View
198956 20989 CVE-2006-4885 URL:http://www.osvdb.org/28836  View
198957 20989 CVE-2006-4885 OSVDB:28837  View
198958 20989 CVE-2006-4885 URL:http://www.osvdb.org/28837  View
198959 20989 CVE-2006-4885 SECUNIA:21920  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
59017 JVNDB-2006-001283 ARD における権限を取得される脆弱性 Apple Remote Desktop (ARD) は、特定のアプリケーションをインストールしている際、リモートマシンの権限を維持するため、認証を回避される、および権限を取得される脆弱性が存在します。 CVE-2006-4887 20989 7.2 http://jvndb.jvn.jp/ja/contents/2006/JVNDB-2006-001283.html  View