NVD

Id
65598  
Name
CVE-2006-7055  
Description
PHP remote file inclusion vulnerability in index.php in TotalCalendar 2.30 and earlier allows remote attackers to execute arbitrary code via a URL in the inc_dir parameter, a different vector than CVE-2006-1922.  
Reject
 
CVSS Version
2  
CVSS Score
6.8  
Severity
Medium  
CVSS Base Score
6.8  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:P/A:P)  
Pub Date
2016-12-20  
Published
2007-02-23  
Modified Date
2008-09-05  
Seq
2006-7055  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
341798 65598 CVE-2006-7055 2290  View
341799 65598 CVE-2006-7055 http://sweetphp.com/files/downloads/patches/TotalCalendar/Security_Patch.zip  View
341800 65598 CVE-2006-7055 http://sweetphp.com/nuke/index.php  View
341801 65598 CVE-2006-7055 1753  View
341802 65598 CVE-2006-7055 20060423 [MajorSecurity] TotalCalendar 2.30 - Remote File Include Vulnerability  View
341803 65598 CVE-2006-7055 17618  View
341804 65598 CVE-2006-7055 totalcalendar-about-file-include(25878)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
56162 JVNDB-2007-004854 TotalCalendar の index.php における PHP リモートファイルインクルージョンの脆弱性 TotalCalendar の index.php には、PHP リモートファイルインクルージョンの脆弱性が存在します。 CVE-2006-7055 23157 CVE-2006-7055 65598 6.8 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-004854.html 2007-02-23 2012-12-20 View