CVE

Id
22127  
CVE No.
CVE-2006-6023  
Status
Candidate  
Description
** DISPUTED ** PHP remote file inclusion vulnerability in phoo.base.php in Bill Roberts Bloo 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the descriptorFileList parameter. NOTE: this issue is disputed by CVE since $descriptorFileList is used in a function definition within phoo.base.php.  
Phase
Assigned (20061121)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
212941 22127 CVE-2006-6023 BUGTRAQ:20061116 Bloo => 1.00 Remote File Include Vulnerability  View
212942 22127 CVE-2006-6023 URL:http://www.securityfocus.com/archive/1/archive/1/451818/100/0/threaded  View
212943 22127 CVE-2006-6023 VIM:20061121 CVE dispute for Bloo RFI  View
212944 22127 CVE-2006-6023 URL:http://www.attrition.org/pipermail/vim/2006-November/001137.html  View
212945 22127 CVE-2006-6023 SREASON:1893  View
212946 22127 CVE-2006-6023 URL:http://securityreason.com/securityalert/1893  View
212947 22127 CVE-2006-6023 XF:bloo-base-file-include(30336)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
61217 JVNDB-2006-003483 QUALCOMM Eudora WorldMail におけるサービス運用妨害 (DoS) の脆弱性 QUALCOMM Eudora WorldMail には、サービス運用妨害 (DoS) 状態となる脆弱性が存在します。 CVE-2006-6025 22127 5 http://jvndb.jvn.jp/ja/contents/2006/JVNDB-2006-003483.html  View