NVD

Id
61496  
Name
CVE-2006-2811  
Description
Multiple PHP remote file inclusion vulnerabilities in Cantico Ovidentia 5.8.0 allow remote attackers to execute arbitrary PHP code via a URL in the babInstallPath parameter in (1) index.php, (2) topman.php, (3) approb.php, (4) vacadmb.php, (5) vacadma.php, (6) vacadm.php, (7) statart.php, (8) search.php, (9) posts.php, (10) options.php, (11) login.php, (12) frchart.php, (13) flbchart.php, (14) fileman.php, (15) faq.php, (16) event.php, (17) directory.php, (18) articles.php, (19) artedit.php, (20) calday.php, and additional unspecified PHP scripts. NOTE: the utilit.php vector is already covered by CVE-2005-1964.  
Reject
 
CVSS Version
2  
CVSS Score
7.5  
Severity
High  
CVSS Base Score
7.5  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:P/A:P)  
Pub Date
2016-12-20  
Published
2006-06-05  
Modified Date
2008-09-05  
Seq
2006-2811  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
318101 61496 CVE-2006-2811 1033  View
318102 61496 CVE-2006-2811 20060531 multiple file inclusion exploits in ovidentia v5.8.0  View
318103 61496 CVE-2006-2811 20070114 Ovidentia 5.6x Series Remote File İnclude  View
318104 61496 CVE-2006-2811 20070209 Ovidentia Exploit Codeds  View
318105 61496 CVE-2006-2811 18232  View
318106 61496 CVE-2006-2811 ovidentia-multiple-scripts-file-include(26981)  View

Related JVN