CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-6739

PHP remote file inclusion vulnerability in buycd.php in Paristemi 0.8.3 allows remote attackers to execute arbitrary PHP code via a URL in the HTTP_DOCUMENT_ROOT parameter, a different vector than CVE-2006-6689.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.017

EPSS Ranking 81.3%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.securityfocus.com/bid/21665
https://www.exploit-db.com/exploits/2955
http://www.securityfocus.com/bid/21665
https://www.exploit-db.com/exploits/2955

Products affected by CVE-2006-6739

Paristemi » Paristemi » Version: 0.8.3

cpe:2.3:a:paristemi:paristemi:0.8.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-6739

Products

Pricing

Contact Us