CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Docmgr: >> Docmgr Security Vulnerabilities

CVE-2006-0687

process.php in DocMGR 0.54.2 does not initialize the $siteModInfo variable when a direct request is made, which allows remote attackers to include arbitrary local files or possibly remote files via a modified includeModule and siteModInfo variable.

CVSS Score

5.0

EPSS Score

0.091

Published

2006-02-15

Page 1

Vulnerabilities

Vulnerable Software

Docmgr: >> Docmgr Security Vulnerabilities

Products

Pricing

Contact Us