Vulnerability Details CVE-2006-6883
PHP remote file inclusion vulnerability in php4you.php in PHPIrc_bot 0.2 allows remote attackers to execute arbitrary PHP code via a URL in the dir parameter. NOTE: this issue is disputed by CVE, since the dir variable is declared before being used
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 67.8%
CVSS Severity
CVSS v2 Score 7.5
References
- http://attrition.org/pipermail/vim/2007-January/001206.html
- http://www.securityfocus.com/archive/1/455613/100/0/threaded
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31185
- http://attrition.org/pipermail/vim/2007-January/001206.html
- http://www.securityfocus.com/archive/1/455613/100/0/threaded
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31185
Products affected by CVE-2006-6883
-
cpe:2.3:a:phpirc_bot:phpirc_bot:0.2