CVE-2006-4437
новости
/
статьи
/
форум
/
программы
/
реклама
/
поиск
/
эксплоиты
[RU]
switch to
English
Version
CVE
CVE-2006-4437
Статус
Candidate
Описание
Eval injection vulnerability in Tagger LE allows remote attackers to execute arbitrary PHP code via the query string in (1) tags.php, (2) sign.php, and (3) admin/index.php.
Важность
High
CVSS score
7
CVSS vector
(AV:R/AC:L/Au:NR/C:P/I:P/A:P/B:N)
Phase
Assigned (29.08.2006)
NVD:
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-4437
References
BID :
20023
BUGTRAQ :
20060914 Secunia Research: Tagger LE PHP "eval()" Injection Vulnerabilities
FRSIRT :
ADV-2006-3606
MISC :
http://secunia.com/secunia_research/2006-62/advisory/
OSVDB :
28755
OSVDB :
28756
OSVDB :
28757
SECUNIA :
21449
XF :
tagger-tags-php-code-execution(28941)
О сайте
|
Условия использования
©
SecurityVulns
,
3APA3A
, Владимир Дубровин
Нижний Новгород
Enter your search terms
Web
securityvulns.ru
Submit search form
test server
