CVE-2006-4311

Loading...

General

Score:7.5/10.0
Severity:High
Category:N/A
Exploit:Available

Impact Metrics

Confidentiality:Partial
Integrity:Partial
Availability:Partial

Exploitability Metrics

Access Vector:Network
Access Complexity:Low
Authentication:None

Published on 23/08/06 - Updated on 17/10/18

Description

PHP remote file inclusion vulnerability in Sonium Enterprise Adressbook 0.2 allows remote attackers to execute arbitrary PHP code via the folder parameter in multiple files in the plugins directory, as demonstrated by plugins/1_Adressbuch/delete.php.

Category:

There is insufficient information about the issue to classify it; details are unknown or unspecified.

Security Notices

US National Vulnerability DatabaseCVE-2006-4311

Exploits

Exploit-DBEDB-2216
SecurityFocusBID-19597

Relative technologies

VendorProduct
soniumenterprise_adressbook

Share this vulnerability with:

Twitter Facebook LinkedIn Mail