mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-07-29 05:56:59 +00:00
142 lines
4.8 KiB
JSON
142 lines
4.8 KiB
JSON
{
|
|
"CVE_data_meta": {
|
|
"ASSIGNER": "cve@mitre.org",
|
|
"ID": "CVE-2006-5627",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "n/a",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name": "n/a"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format": "MITRE",
|
|
"data_type": "CVE",
|
|
"data_version": "4.0",
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "Multiple PHP remote file inclusion vulnerabilities in QnECMS 2.5.6 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the adminfolderpath parameter to (1) headerscripts.php, (2) footerhome.php, and (3) footermain.php in admin/include/; (4) photogallery/headerscripts.php; and (5) footerhome.php, (6) footermain.php, (7) headermain.php, (8) sitemapfooter.php, and (9) sitemapheader.php in templates/."
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"name": "22623",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/22623"
|
|
},
|
|
{
|
|
"name": "30124",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/30124"
|
|
},
|
|
{
|
|
"name": "30122",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/30122"
|
|
},
|
|
{
|
|
"name": "20801",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/20801"
|
|
},
|
|
{
|
|
"name": "ADV-2006-4258",
|
|
"refsource": "VUPEN",
|
|
"url": "http://www.vupen.com/english/advisories/2006/4258"
|
|
},
|
|
{
|
|
"name": "qnecms-adminfolderpath-file-include(29871)",
|
|
"refsource": "XF",
|
|
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29871"
|
|
},
|
|
{
|
|
"name": "30121",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/30121"
|
|
},
|
|
{
|
|
"name": "20061030 [ECHO_ADV_53$2006] QnECMS <= 2.5.6 (adminfolderpath) Remote File Inclusion Vulnerability",
|
|
"refsource": "BUGTRAQ",
|
|
"url": "http://www.securityfocus.com/archive/1/450056/100/0/threaded"
|
|
},
|
|
{
|
|
"name": "30117",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/30117"
|
|
},
|
|
{
|
|
"name": "30123",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/30123"
|
|
},
|
|
{
|
|
"name": "2681",
|
|
"refsource": "EXPLOIT-DB",
|
|
"url": "https://www.exploit-db.com/exploits/2681"
|
|
},
|
|
{
|
|
"name": "20061122 Re: [ECHO_ADV_53$2006] QnECMS <= 2.5.6 (adminfolderpath) Remote File Inclusion Vulnerability",
|
|
"refsource": "BUGTRAQ",
|
|
"url": "http://www.securityfocus.com/archive/1/452356/100/0/threaded"
|
|
},
|
|
{
|
|
"name": "30119",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/30119"
|
|
},
|
|
{
|
|
"name": "30125",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/30125"
|
|
},
|
|
{
|
|
"name": "30118",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/30118"
|
|
},
|
|
{
|
|
"name": "30120",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/30120"
|
|
},
|
|
{
|
|
"name": "http://advisories.echo.or.id/adv/adv53-K-159-2006.txt",
|
|
"refsource": "MISC",
|
|
"url": "http://advisories.echo.or.id/adv/adv53-K-159-2006.txt"
|
|
}
|
|
]
|
|
}
|
|
} |