NVD

Id
64608  
Name
CVE-2006-6047  
Description
Directory traversal vulnerability in manager/index.php in Etomite 0.6.1.2 allows remote authenticated administrators to include and execute arbitrary local files via a .. (dot dot) in the f parameter, as demonstrated by injecting PHP sequences into an Apache HTTP Server log file, which is then included by index.php.  
Reject
 
CVSS Version
2  
CVSS Score
5.8  
Severity
Medium  
CVSS Base Score
5.8  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
6.4  
CVSS Vector
(AV:N/AC:L/Au:M/C:P/I:P/A:P)  
Pub Date
2016-12-20  
Published
2006-11-21  
Modified Date
2011-12-08  
Seq
2006-6047  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
337171 64608 CVE-2006-6047 2790  View
337172 64608 CVE-2006-6047 http://www.0xcafebabe.it/sploits/etm_0612_remote_com.pl  View
337173 64608 CVE-2006-6047 http://www.etomite.org/forums/index.php?showtopic=6388  View
337174 64608 CVE-2006-6047 20061116 Etomite CMS 0.6.1.2 Multiple Vulnerabilities ( Sql Injection + Local file inclusion )  View
337175 64608 CVE-2006-6047 20061117 Re: Etomite CMS 0.6.1.2 Multiple Vulnerabilities ( Sql Injection + Local file inclusion )  View
337176 64608 CVE-2006-6047 21135  View
337177 64608 CVE-2006-6047 ADV-2006-4558  View
337178 64608 CVE-2006-6047 etomite-index-file-include(30329)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
59326 JVNDB-2006-001592 Etomite の manager/index.php におけるディレクトリトラバーサルの脆弱性 Etomite の manager/index.php には、ディレクトリトラバーサルの脆弱性が存在します。 CVE-2006-6047 22149 CVE-2006-6047 64608 5.8 http://jvndb.jvn.jp/ja/contents/2006/JVNDB-2006-001592.html 2006-11-21 2012-06-26 View