NVD

Id
63846  
Name
CVE-2006-5240  
Description
PHP remote file inclusion vulnerability in engine/require.php in Docmint 2.0 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the MY_ENV[BASE_ENGINE_LOC] parameter.  
Reject
 
CVSS Version
2  
CVSS Score
5.1  
Severity
Medium  
CVSS Base Score
5.1  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
4.9  
CVSS Vector
(AV:N/AC:H/Au:N/C:P/I:P/A:P)  
Pub Date
2016-12-20  
Published
2006-10-11  
Modified Date
2011-03-07  
Seq
2006-5240  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
332784 63846 CVE-2006-5240 http://advisories.echo.or.id/adv/adv51-K-159-2006.txt  View
332785 63846 CVE-2006-5240 2493  View
332786 63846 CVE-2006-5240 1709  View
332787 63846 CVE-2006-5240 1017026  View
332788 63846 CVE-2006-5240 http://www.docmint.net/index.php?id=54  View
332789 63846 CVE-2006-5240 20061009 [ECHO_ADV_51$2006] docmint <= 2.0 (MY_ENV[BASE_ENGINE_LOC]) Remote File Inclusion Vulnerability  View
332790 63846 CVE-2006-5240 20409  View
332791 63846 CVE-2006-5240 ADV-2006-3968  View
332792 63846 CVE-2006-5240 docmint-engine-file-include(29390)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
59107 JVNDB-2006-001373 Docmint の engine/require.php における PHP リモートファイルインクルージョンの脆弱性 Docmint の engine/require.php には、register_globals が有効になっている際、PHP リモートファイルインクルージョンの脆弱性が存在します。 CVE-2006-5240 21342 CVE-2006-5240 63846 5.1 http://jvndb.jvn.jp/ja/contents/2006/JVNDB-2006-001373.html 2006-10-11 2012-06-26 View