mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-08-04 08:44:25 +00:00
217 lines
7.3 KiB
JSON
217 lines
7.3 KiB
JSON
{
|
|
"CVE_data_meta": {
|
|
"ASSIGNER": "cve@mitre.org",
|
|
"ID": "CVE-2006-3771",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "n/a",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name": "n/a"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format": "MITRE",
|
|
"data_type": "CVE",
|
|
"data_version": "4.0",
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "Multiple PHP remote file inclusion vulnerabilities in component.php in iManage CMS 4.0.12 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the absolute_path parameter to (1) articles.php, (2) contact.php, (3) displaypage.php, (4) faq.php, (5) mainbody.php, (6) news.php, (7) registration.php, (8) whosOnline.php, (9) components/com_calendar.php, (10) components/com_forum.php, (11) components/minibb/index.php, (12) components/minibb/bb_admin.php, (13) components/minibb/bb_plugins.php, (14) modules/mod_calendar.php, (15) modules/mod_browser_prefs.php, (16) modules/mod_counter.php, (17) modules/mod_online.php, (18) modules/mod_stats.php, (19) modules/mod_weather.php, (20) themes/bizz.php, (21) themes/default.php, (22) themes/simple.php, (23) themes/original.php, (24) themes/portal.php, (25) themes/purple.php, and other unspecified files."
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"name": "28652",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/28652"
|
|
},
|
|
{
|
|
"name": "28665",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/28665"
|
|
},
|
|
{
|
|
"name": "28661",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/28661"
|
|
},
|
|
{
|
|
"name": "20060720 [ECHO_ADV_40$2006] iManage CMS <= 4.0.12 (absolute_path) Remote File Inclusion",
|
|
"refsource": "BUGTRAQ",
|
|
"url": "http://www.securityfocus.com/archive/1/440642/100/0/threaded"
|
|
},
|
|
{
|
|
"name": "28654",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/28654"
|
|
},
|
|
{
|
|
"name": "28670",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/28670"
|
|
},
|
|
{
|
|
"name": "28653",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/28653"
|
|
},
|
|
{
|
|
"name": "19090",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/19090"
|
|
},
|
|
{
|
|
"name": "28655",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/28655"
|
|
},
|
|
{
|
|
"name": "28663",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/28663"
|
|
},
|
|
{
|
|
"name": "28660",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/28660"
|
|
},
|
|
{
|
|
"name": "28651",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/28651"
|
|
},
|
|
{
|
|
"name": "28648",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/28648"
|
|
},
|
|
{
|
|
"name": "28671",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/28671"
|
|
},
|
|
{
|
|
"name": "28649",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/28649"
|
|
},
|
|
{
|
|
"name": "1016551",
|
|
"refsource": "SECTRACK",
|
|
"url": "http://securitytracker.com/id?1016551"
|
|
},
|
|
{
|
|
"name": "28669",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/28669"
|
|
},
|
|
{
|
|
"name": "28656",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/28656"
|
|
},
|
|
{
|
|
"name": "28664",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/28664"
|
|
},
|
|
{
|
|
"name": "28647",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/28647"
|
|
},
|
|
{
|
|
"name": "28658",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/28658"
|
|
},
|
|
{
|
|
"name": "28668",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/28668"
|
|
},
|
|
{
|
|
"name": "28662",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/28662"
|
|
},
|
|
{
|
|
"name": "1265",
|
|
"refsource": "SREASON",
|
|
"url": "http://securityreason.com/securityalert/1265"
|
|
},
|
|
{
|
|
"name": "imanagecms-absolutepath-file-include(27875)",
|
|
"refsource": "XF",
|
|
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27875"
|
|
},
|
|
{
|
|
"name": "2046",
|
|
"refsource": "EXPLOIT-DB",
|
|
"url": "https://www.exploit-db.com/exploits/2046"
|
|
},
|
|
{
|
|
"name": "28659",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/28659"
|
|
},
|
|
{
|
|
"name": "28650",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/28650"
|
|
},
|
|
{
|
|
"name": "http://advisories.echo.or.id/adv/adv40-matdhule-2006.txt",
|
|
"refsource": "MISC",
|
|
"url": "http://advisories.echo.or.id/adv/adv40-matdhule-2006.txt"
|
|
},
|
|
{
|
|
"name": "28667",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/28667"
|
|
},
|
|
{
|
|
"name": "28657",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/28657"
|
|
},
|
|
{
|
|
"name": "28666",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/28666"
|
|
}
|
|
]
|
|
}
|
|
} |