CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-7193

PHP remote file inclusion vulnerability in unit_test/test_cases.php in Smarty 2.6.1 allows remote attackers to execute arbitrary PHP code via a URL in the SMARTY_DIR parameter. NOTE: this issue is disputed by CVE and a third party because SMARTY_DIR is a constant

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 68.3%

CVSS Severity

CVSS v2 Score 7.5

References

http://marc.info/?l=bugtraq&m=116163668213491&w=2
http://marc.info/?l=bugtraq&m=116170769322920&w=2
http://osvdb.org/31096
https://exchange.xforce.ibmcloud.com/vulnerabilities/29739
http://marc.info/?l=bugtraq&m=116163668213491&w=2
http://marc.info/?l=bugtraq&m=116170769322920&w=2
http://osvdb.org/31096
https://exchange.xforce.ibmcloud.com/vulnerabilities/29739

Products affected by CVE-2006-7193

Smarty » Smarty » Version: 2.6.1

cpe:2.3:a:smarty:smarty:2.6.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-7193

Products

Pricing

Contact Us