Vulnerabilities > CVE-2006-1658 - HTML Injection vulnerability in Chucky A. Ivey N.T. 1.1.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Direct static code injection vulnerability in ticker.db.php in Chucky A. Ivey N.T. 1.1.0 allows remote administrators to insert arbitrary PHP code into the config file, which is included other N.T. scripts.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
References
- http://evuln.com/vulns/121/summary.html
- http://secunia.com/advisories/19526
- http://www.osvdb.org/24398
- http://www.securityfocus.com/archive/1/431344/100/0/threaded
- http://www.securityfocus.com/bid/17387
- http://www.vupen.com/english/advisories/2006/1243
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25639