mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-08-04 08:44:25 +00:00
218 lines
6.7 KiB
JSON
218 lines
6.7 KiB
JSON
{
|
|
"CVE_data_meta" : {
|
|
"ASSIGNER" : "cve@mitre.org",
|
|
"ID" : "CVE-2006-3771",
|
|
"STATE" : "PUBLIC"
|
|
},
|
|
"affects" : {
|
|
"vendor" : {
|
|
"vendor_data" : [
|
|
{
|
|
"product" : {
|
|
"product_data" : [
|
|
{
|
|
"product_name" : "n/a",
|
|
"version" : {
|
|
"version_data" : [
|
|
{
|
|
"version_value" : "n/a"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name" : "n/a"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format" : "MITRE",
|
|
"data_type" : "CVE",
|
|
"data_version" : "4.0",
|
|
"description" : {
|
|
"description_data" : [
|
|
{
|
|
"lang" : "eng",
|
|
"value" : "Multiple PHP remote file inclusion vulnerabilities in component.php in iManage CMS 4.0.12 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the absolute_path parameter to (1) articles.php, (2) contact.php, (3) displaypage.php, (4) faq.php, (5) mainbody.php, (6) news.php, (7) registration.php, (8) whosOnline.php, (9) components/com_calendar.php, (10) components/com_forum.php, (11) components/minibb/index.php, (12) components/minibb/bb_admin.php, (13) components/minibb/bb_plugins.php, (14) modules/mod_calendar.php, (15) modules/mod_browser_prefs.php, (16) modules/mod_counter.php, (17) modules/mod_online.php, (18) modules/mod_stats.php, (19) modules/mod_weather.php, (20) themes/bizz.php, (21) themes/default.php, (22) themes/simple.php, (23) themes/original.php, (24) themes/portal.php, (25) themes/purple.php, and other unspecified files."
|
|
}
|
|
]
|
|
},
|
|
"problemtype" : {
|
|
"problemtype_data" : [
|
|
{
|
|
"description" : [
|
|
{
|
|
"lang" : "eng",
|
|
"value" : "n/a"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references" : {
|
|
"reference_data" : [
|
|
{
|
|
"name" : "20060720 [ECHO_ADV_40$2006] iManage CMS <= 4.0.12 (absolute_path) Remote File Inclusion",
|
|
"refsource" : "BUGTRAQ",
|
|
"url" : "http://www.securityfocus.com/archive/1/440642/100/0/threaded"
|
|
},
|
|
{
|
|
"name" : "http://advisories.echo.or.id/adv/adv40-matdhule-2006.txt",
|
|
"refsource" : "MISC",
|
|
"url" : "http://advisories.echo.or.id/adv/adv40-matdhule-2006.txt"
|
|
},
|
|
{
|
|
"name" : "2046",
|
|
"refsource" : "EXPLOIT-DB",
|
|
"url" : "https://www.exploit-db.com/exploits/2046"
|
|
},
|
|
{
|
|
"name" : "19090",
|
|
"refsource" : "BID",
|
|
"url" : "http://www.securityfocus.com/bid/19090"
|
|
},
|
|
{
|
|
"name" : "28647",
|
|
"refsource" : "OSVDB",
|
|
"url" : "http://www.osvdb.org/28647"
|
|
},
|
|
{
|
|
"name" : "28652",
|
|
"refsource" : "OSVDB",
|
|
"url" : "http://www.osvdb.org/28652"
|
|
},
|
|
{
|
|
"name" : "28653",
|
|
"refsource" : "OSVDB",
|
|
"url" : "http://www.osvdb.org/28653"
|
|
},
|
|
{
|
|
"name" : "28656",
|
|
"refsource" : "OSVDB",
|
|
"url" : "http://www.osvdb.org/28656"
|
|
},
|
|
{
|
|
"name" : "28657",
|
|
"refsource" : "OSVDB",
|
|
"url" : "http://www.osvdb.org/28657"
|
|
},
|
|
{
|
|
"name" : "28658",
|
|
"refsource" : "OSVDB",
|
|
"url" : "http://www.osvdb.org/28658"
|
|
},
|
|
{
|
|
"name" : "28659",
|
|
"refsource" : "OSVDB",
|
|
"url" : "http://www.osvdb.org/28659"
|
|
},
|
|
{
|
|
"name" : "28660",
|
|
"refsource" : "OSVDB",
|
|
"url" : "http://www.osvdb.org/28660"
|
|
},
|
|
{
|
|
"name" : "28661",
|
|
"refsource" : "OSVDB",
|
|
"url" : "http://www.osvdb.org/28661"
|
|
},
|
|
{
|
|
"name" : "28662",
|
|
"refsource" : "OSVDB",
|
|
"url" : "http://www.osvdb.org/28662"
|
|
},
|
|
{
|
|
"name" : "28663",
|
|
"refsource" : "OSVDB",
|
|
"url" : "http://www.osvdb.org/28663"
|
|
},
|
|
{
|
|
"name" : "28664",
|
|
"refsource" : "OSVDB",
|
|
"url" : "http://www.osvdb.org/28664"
|
|
},
|
|
{
|
|
"name" : "28665",
|
|
"refsource" : "OSVDB",
|
|
"url" : "http://www.osvdb.org/28665"
|
|
},
|
|
{
|
|
"name" : "28666",
|
|
"refsource" : "OSVDB",
|
|
"url" : "http://www.osvdb.org/28666"
|
|
},
|
|
{
|
|
"name" : "28667",
|
|
"refsource" : "OSVDB",
|
|
"url" : "http://www.osvdb.org/28667"
|
|
},
|
|
{
|
|
"name" : "28668",
|
|
"refsource" : "OSVDB",
|
|
"url" : "http://www.osvdb.org/28668"
|
|
},
|
|
{
|
|
"name" : "28669",
|
|
"refsource" : "OSVDB",
|
|
"url" : "http://www.osvdb.org/28669"
|
|
},
|
|
{
|
|
"name" : "28670",
|
|
"refsource" : "OSVDB",
|
|
"url" : "http://www.osvdb.org/28670"
|
|
},
|
|
{
|
|
"name" : "28671",
|
|
"refsource" : "OSVDB",
|
|
"url" : "http://www.osvdb.org/28671"
|
|
},
|
|
{
|
|
"name" : "28648",
|
|
"refsource" : "OSVDB",
|
|
"url" : "http://www.osvdb.org/28648"
|
|
},
|
|
{
|
|
"name" : "28649",
|
|
"refsource" : "OSVDB",
|
|
"url" : "http://www.osvdb.org/28649"
|
|
},
|
|
{
|
|
"name" : "28650",
|
|
"refsource" : "OSVDB",
|
|
"url" : "http://www.osvdb.org/28650"
|
|
},
|
|
{
|
|
"name" : "28651",
|
|
"refsource" : "OSVDB",
|
|
"url" : "http://www.osvdb.org/28651"
|
|
},
|
|
{
|
|
"name" : "28654",
|
|
"refsource" : "OSVDB",
|
|
"url" : "http://www.osvdb.org/28654"
|
|
},
|
|
{
|
|
"name" : "28655",
|
|
"refsource" : "OSVDB",
|
|
"url" : "http://www.osvdb.org/28655"
|
|
},
|
|
{
|
|
"name" : "1016551",
|
|
"refsource" : "SECTRACK",
|
|
"url" : "http://securitytracker.com/id?1016551"
|
|
},
|
|
{
|
|
"name" : "1265",
|
|
"refsource" : "SREASON",
|
|
"url" : "http://securityreason.com/securityalert/1265"
|
|
},
|
|
{
|
|
"name" : "imanagecms-absolutepath-file-include(27875)",
|
|
"refsource" : "XF",
|
|
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/27875"
|
|
}
|
|
]
|
|
}
|
|
}
|