CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-5918

Unrestricted file upload vulnerability in RapidKill (aka PHP Rapid Kill) 5.7 Pro, and certain other versions, allows remote attackers to upload and execute arbitrary PHP scripts via the "Link to Download" field. NOTE: it is possible that the field value is restricted to files on specific public web sites.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.034

EPSS Ranking 87.0%

CVSS Severity

CVSS v2 Score 7.5

References

http://securityreason.com/securityalert/1862
http://www.securityfocus.com/archive/1/450681/100/0/threaded
http://www.securityfocus.com/bid/20896
http://securityreason.com/securityalert/1862
http://www.securityfocus.com/archive/1/450681/100/0/threaded
http://www.securityfocus.com/bid/20896

Products affected by CVE-2006-5918

Php Rapid Kill » Php Rapid Kill » Version: 5.7_pro

cpe:2.3:a:php_rapid_kill:php_rapid_kill:5.7_pro

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-5918

Products

Pricing

Contact Us