CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-3091

PhpMyFactures 1.0, and possibly 1.2 and earlier, allows remote attackers to obtain the installation path via a direct request to (1) /verif.php, (2) /inc/footer.php, and (3) /remises/ajouter_remise.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 72.1%

CVSS Severity

CVSS v2 Score 5.0

References

http://secunia.com/advisories/20642
http://securityreason.com/securityalert/1111
http://www.acid-root.new.fr/advisories/phpmyfactures.txt
http://www.osvdb.org/26486
http://www.osvdb.org/26487
http://www.osvdb.org/26488
http://www.securityfocus.com/archive/1/437025/100/0/threaded
https://exchange.xforce.ibmcloud.com/vulnerabilities/27205
http://secunia.com/advisories/20642
http://securityreason.com/securityalert/1111
http://www.acid-root.new.fr/advisories/phpmyfactures.txt
http://www.osvdb.org/26486
http://www.osvdb.org/26487
http://www.osvdb.org/26488
http://www.securityfocus.com/archive/1/437025/100/0/threaded
https://exchange.xforce.ibmcloud.com/vulnerabilities/27205

Products affected by CVE-2006-3091

Phpmyfactures » Phpmyfactures » Version: Any

cpe:2.3:a:phpmyfactures:phpmyfactures:*
Phpmyfactures » Phpmyfactures » Version: 1.0

cpe:2.3:a:phpmyfactures:phpmyfactures:1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-3091

Products

Pricing

Contact Us