Vulnerability Details CVE-2006-4034
PHP remote file inclusion vulnerability in include/html/config.php in ModernGigabyte ModernBill 1.6 allows remote attackers to execute arbitrary PHP code via a URL in the DIR parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.015
EPSS Ranking 80.5%
CVSS Severity
CVSS v2 Score 7.5
References
- http://www.securityfocus.com/archive/1/442126/100/0/threaded
- http://www.securityfocus.com/bid/19335
- http://www.solpotcrew.org/adv/solpot-adv-04.txt
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28207
- http://www.securityfocus.com/archive/1/442126/100/0/threaded
- http://www.securityfocus.com/bid/19335
- http://www.solpotcrew.org/adv/solpot-adv-04.txt
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28207
Products affected by CVE-2006-4034
-
cpe:2.3:a:moderngigabyte:modernbill:1.6