CVE-2006-2811

NONECVSS 0.0

0.0

Multiple PHP remote file inclusion vulnerabilities in Cantico Ovidentia 5.8.0 allow remote attackers to execute arbitrary PHP code via a URL in the babInstallPath parameter in (1) index.php, (2) topman.php, (3) approb.php, (4) vacadmb.php, (5) vacadma.php, (6) vacadm.php, (7) statart.php, (8) search.php, (9) posts.php, (10) options.php, (11) login.php, (12) frchart.php, (13) flbchart.php, (14) fileman.php, (15) faq.php, (16) event.php, (17) directory.php, (18) articles.php, (19) artedit.php, (20) calday.php, and additional unspecified PHP scripts. NOTE: the utilit.php vector is already covered by CVE-2005-1964.

🔗 References (52)

cve@mitrehttp://securityreason.com/securityalert/1033
cve@mitrehttp://www.osvdb.org/27209
cve@mitrehttp://www.osvdb.org/27211
cve@mitrehttp://www.osvdb.org/27212
cve@mitrehttp://www.osvdb.org/27213
cve@mitrehttp://www.osvdb.org/27214
cve@mitrehttp://www.osvdb.org/27215
cve@mitrehttp://www.osvdb.org/27216
cve@mitrehttp://www.osvdb.org/27217
cve@mitrehttp://www.osvdb.org/27218
cve@mitrehttp://www.osvdb.org/27219
cve@mitrehttp://www.osvdb.org/27220
cve@mitrehttp://www.osvdb.org/27221
cve@mitrehttp://www.osvdb.org/27222
cve@mitrehttp://www.osvdb.org/27223

Is Your Infrastructure Affected by CVE-2006-2811?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2006-2811

📅 Published

🔄 Last Modified

🔗 References (52)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2006-2811?