Vulnerabilities > CVE-2006-1294 - Unspecified vulnerability in Knowledgebasepublisher 1.2
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN knowledgebasepublisher
exploit available
Summary
PHP remote file include vulnerability in PageController.php in KnowledgebasePublisher 1.2 allows remote attackers to include and execute arbitrary PHP code via a URL in the dir parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
id | EDB-ID:1587 |
References
- http://secunia.com/advisories/19298
- http://secunia.com/advisories/19298
- http://sourceforge.net/project/shownotes.php?release_id=402179&group_id=144153
- http://sourceforge.net/project/shownotes.php?release_id=402179&group_id=144153
- http://www.osvdb.org/24002
- http://www.osvdb.org/24002
- http://www.securityfocus.com/bid/17120
- http://www.securityfocus.com/bid/17120
- http://www.vupen.com/english/advisories/2006/1020
- http://www.vupen.com/english/advisories/2006/1020
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25338
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25338
- https://www.exploit-db.com/exploits/1587
- https://www.exploit-db.com/exploits/1587