CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-7011

PHP remote file inclusion vulnerability in adminips.php in Develooping Flash Chat allows remote attackers to execute arbitrary PHP code via a URL in the banned_file parameter. NOTE: CVE disputes this vulnerability because banned_file is set to a constant value

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 68.3%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.attrition.org/pipermail/vim/2007-February/001321.html
http://www.securityfocus.com/archive/1/437411/30/4320/threaded
http://www.securityfocus.com/bid/18480
https://exchange.xforce.ibmcloud.com/vulnerabilities/27233
http://www.attrition.org/pipermail/vim/2007-February/001321.html
http://www.securityfocus.com/archive/1/437411/30/4320/threaded
http://www.securityfocus.com/bid/18480
https://exchange.xforce.ibmcloud.com/vulnerabilities/27233

Products affected by CVE-2006-7011

Develooping » Flash Chat » Version: 4.5.7

cpe:2.3:a:develooping:flash_chat:4.5.7
Develooping » Flash Chat » Version: 4.6

cpe:2.3:a:develooping:flash_chat:4.6
Develooping » Flash Chat » Version: 4.6.1

cpe:2.3:a:develooping:flash_chat:4.6.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-7011

Products

Pricing

Contact Us