CVE-2006-3193

NONECVSS 0.0

0.0

Multiple PHP remote file inclusion vulnerabilities in Grayscale BandSite CMS 1.1.1, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the root_path parameter to (1) includes/content/contact_content.php; multiple files in adminpanel/includes/add_forms/ including (2) addbioform.php, (3) addfliersform.php, (4) addgenmerchform.php, (5) addinterviewsform.php, (6) addlinksform.php, (7) addlyricsform.php, (8) addmembioform.php, (9) addmerchform.php, (10) addmerchpicform.php, (11) addnewsform.php, (12) addphotosform.php, (13) addreleaseform.php, (14) addreleasepicform.php, (15) addrelmerchform.php, (16) addreviewsform.php, (17) addshowsform.php, (18) addwearmerchform.php; (19) adminpanel/includes/mailinglist/disphtmltbl.php, and (20) adminpanel/includes/mailinglist/dispxls.php.

🔗 References (50)

cve@mitrehttp://secunia.com/advisories/20768
cve@mitrehttp://sourceforge.net/project/shownotes.php?release_id=428062
cve@mitrehttp://www.osvdb.org/27233
cve@mitrehttp://www.osvdb.org/27234
cve@mitrehttp://www.osvdb.org/27235
cve@mitrehttp://www.osvdb.org/27236
cve@mitrehttp://www.osvdb.org/27237
cve@mitrehttp://www.osvdb.org/27238
cve@mitrehttp://www.osvdb.org/27239
cve@mitrehttp://www.osvdb.org/27240
cve@mitrehttp://www.osvdb.org/27241
cve@mitrehttp://www.osvdb.org/27242
cve@mitrehttp://www.osvdb.org/27243
cve@mitrehttp://www.osvdb.org/27244
cve@mitrehttp://www.osvdb.org/27245

Is Your Infrastructure Affected by CVE-2006-3193?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2006-3193

📅 Published

🔄 Last Modified

🔗 References (50)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2006-3193?