CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-4163

PHP remote file inclusion vulnerability in cls_fast_template.php in myWebland miniBloggie 1.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the fname parameter. NOTE: another researcher was unable to find a way to execute code after including it via a URL. CVE analysis as of 20060816 was inconclusive

Exploit prediction scoring system (EPSS) score

EPSS Score 0.067

EPSS Ranking 90.9%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.securityfocus.com/archive/1/442966/100/0/threaded
http://www.securityfocus.com/archive/1/443160/100/0/threaded
http://www.securityfocus.com/bid/19476
http://www.securityfocus.com/archive/1/442966/100/0/threaded
http://www.securityfocus.com/archive/1/443160/100/0/threaded
http://www.securityfocus.com/bid/19476

Products affected by CVE-2006-4163

Mywebland » Minibloggie » Version: Any

cpe:2.3:a:mywebland:minibloggie:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-4163

Products

Pricing

Contact Us