CVE

Id
23250  
CVE No.
CVE-2006-7146  
Status
Candidate  
Description
** DISPUTED ** PHP remote file inclusion vulnerability in bug.php in Leicestershire communityPortals 1.0 build 20051018 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the cp_root_path parameter, a different vector than CVE-2006-5280. NOTE: CVE disputes this issue, since bug.php is not in communityPortals source distributions.  
Phase
Assigned (20070307)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
223846 23250 CVE-2006-7146 BUGTRAQ:20061011 CommunityPortals <= 1.0 Remote File Include Vulnerability  View
223847 23250 CVE-2006-7146 URL:http://www.securityfocus.com/archive/1/archive/1/448311/100/0/threaded  View
223848 23250 CVE-2006-7146 BID:20467  View
223849 23250 CVE-2006-7146 URL:http://www.securityfocus.com/bid/20467  View
223850 23250 CVE-2006-7146 SREASON:2387  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
56195 JVNDB-2007-004887 Brazilian PHPBB の maluinfo における PHP リモートファイルインクルージョンの脆弱性 Brazilian PHPBB の maluinfo の includes/bb_usage_stats.php には、PHP リモートファイルインクルージョンの脆弱性が存在します。 CVE-2006-7148 23250 10 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-004887.html  View