Vulnerability Details CVE-2006-4673
Global variable overwrite vulnerability in maincore.php in PHP-Fusion 6.01.4 and earlier uses the extract function on the superglobals, which allows remote attackers to conduct SQL injection attacks via the _SERVER[REMOTE_ADDR] parameter to news.php.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 68.4%
CVSS Severity
CVSS v2 Score 2.6
References
- http://marc.info/?l=bugtraq&m=115765187519458&w=2
- http://retrogod.altervista.org/phpfusion_6-01-4_xpl.html
- http://secunia.com/advisories/21830
- http://www.php-fusion.co.uk/news.php?readmore=353
- http://www.securityfocus.com/bid/19908
- http://www.vupen.com/english/advisories/2006/3523
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28818
- http://marc.info/?l=bugtraq&m=115765187519458&w=2
- http://retrogod.altervista.org/phpfusion_6-01-4_xpl.html
- http://secunia.com/advisories/21830
- http://www.php-fusion.co.uk/news.php?readmore=353
- http://www.securityfocus.com/bid/19908
- http://www.vupen.com/english/advisories/2006/3523
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28818
Products affected by CVE-2006-4673
-
cpe:2.3:a:php_fusion:php_fusion:*
-
cpe:2.3:a:php_fusion:php_fusion:6.0.105
-
cpe:2.3:a:php_fusion:php_fusion:6.0.106
-
cpe:2.3:a:php_fusion:php_fusion:6.0.107
-
cpe:2.3:a:php_fusion:php_fusion:6.0.109
-
cpe:2.3:a:php_fusion:php_fusion:6.0.110
-
cpe:2.3:a:php_fusion:php_fusion:6.0.204
-
cpe:2.3:a:php_fusion:php_fusion:6.0.206
-
cpe:2.3:a:php_fusion:php_fusion:6.0.303
-
cpe:2.3:a:php_fusion:php_fusion:6.0.304
-
cpe:2.3:a:php_fusion:php_fusion:6.0.306
-
cpe:2.3:a:php_fusion:php_fusion:6.0.307