NVD

Id
65569  
Name
CVE-2006-7026  
Description
PHP remote file inclusion vulnerability in sources/join.php in Aardvark Topsites PHP 4.2.2 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the CONFIG[path] parameter, a different vector than CVE-2006-2149.  
Reject
 
CVSS Version
2  
CVSS Score
6.8  
Severity
Medium  
CVSS Base Score
6.8  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:P/A:P)  
Pub Date
2016-12-20  
Published
2007-02-22  
Modified Date
2008-09-05  
Seq
2006-7026  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
341696 65569 CVE-2006-7026 1730  View
341697 65569 CVE-2006-7026 aardvark-lostpw-join-file-include(26189)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
52574 JVNDB-2007-001266 Aardvark Topsites PHP の sources/join.php における PHP リモートファイルインクルージョンの脆弱性 Aardvark Topsites PHP の sources/join.php には、PHP リモートファイルインクルージョンの脆弱性が存在します。 CVE-2006-7026 23128 CVE-2006-7026 65569 6.8 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-001266.html 2007-02-22 2012-06-26 View