Vulnerability Details CVE-2006-7044
PHP remote file inclusion vulnerability in comment.core.inc.php in Clan Manager Pro (CMPRO) 1.11 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the sitepath parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 68.1%
CVSS Severity
CVSS v2 Score 7.5
References
- http://sx02.coresec.de/advisories/150.txt
- http://www.osvdb.org/26223
- http://www.vupen.com/english/advisories/2006/2195
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27059
- http://sx02.coresec.de/advisories/150.txt
- http://www.osvdb.org/26223
- http://www.vupen.com/english/advisories/2006/2195
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27059
Products affected by CVE-2006-7044
-
cpe:2.3:a:cmpro_team:clan_manager_pro:*