CVE-2006-1350 - PHP remote file include vulnerability in index.php in 99Articles.com (aka ArticlesOne.com) Free arti

CVE-2006-1350

Summary

PHP remote file include vulnerability in index.php in 99Articles.com (aka ArticlesOne.com) Free articles directory allows remote attackers to include and execute arbitrary PHP code via a URL in the page parameter.

References

Vulnerable Configurations

cpe:2.3:a:articlesone:99articles_directory:*:*:*:*:*:*:*:*
cpe:2.3:a:articlesone:99articles_directory:*:*:*:*:*:*:*:*

CVSS

Base:	7.5 (as of 18-10-2018 - 16:32)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:P/I:P/A:P

refmap via4

bid	17183
bugtraq	20060321 Free Articles Directory Remote Command Exucetion
osvdb	24024
secunia	19320
sreason	616
vim	20060322 Free Articles Directory - file inclusion, code execution?
vupen	ADV-2006-1037
xf	freearticlesdirectory-index-file-include(25378)

Last major update

18-10-2018 - 16:32

Published

22-03-2006 - 01:02

Last modified

18-10-2018 - 16:32