CVE

Id
21782  
CVE No.
CVE-2006-5678  
Status
Candidate  
Description
** DISPUTED ** PHP remote file inclusion vulnerability in common/visiteurs/include/library.inc.php in J-Pierre DEZELUS Les Visiteurs 2.0.1, as used in phpMyConferences (phpMyConference) 8.0.2 and possibly other products, allows remote attackers to execute arbitrary PHP code via a URL in the lvc_modules_dir parameter. NOTE: CVE disputes this vulnerability, because the inclusion occurs in a function that is not called during a direct request to library.inc.php.  
Phase
Assigned (20061102)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
208698 21782 CVE-2006-5678 BUGTRAQ:20061031 phpMyConferences <= 8.0.2 Remote File Inclusion  View
208699 21782 CVE-2006-5678 URL:http://www.securityfocus.com/archive/1/archive/1/450140/100/0/threaded  View
208700 21782 CVE-2006-5678 BUGTRAQ:20061103 Re: phpMyConferences <= 8.0.2 Remote File Inclusion  View
208701 21782 CVE-2006-5678 URL:http://www.securityfocus.com/archive/1/archive/1/450467/100/0/threaded  View
208702 21782 CVE-2006-5678 VIM:20061102 CVE dispute - phpMyConferences RFI  View
208703 21782 CVE-2006-5678 URL:http://www.attrition.org/pipermail/vim/2006-November/001105.html  View
208704 21782 CVE-2006-5678 SREASON:1810  View
208705 21782 CVE-2006-5678 URL:http://securityreason.com/securityalert/1810  View
208706 21782 CVE-2006-5678 XF:phpmyconferences-library-file-include(29919)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
59212 JVNDB-2006-001478 FreeBSD の libarchive ライブラリにおけるサービス運用妨害 (DoS) の脆弱性 FreeBSD の libarchive ライブラリには、サービス運用妨害 (CPU の消費) 状態となる脆弱性が存在します。 CVE-2006-5680 21782 5 http://jvndb.jvn.jp/ja/contents/2006/JVNDB-2006-001478.html  View