Vulnerabilities > CVE-2006-3028 - Unspecified vulnerability in Minerva 2.0.8Abuild237
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN minerva
exploit available
Summary
PHP remote file inclusion vulnerability in stat_modules/users_age/module.php in Minerva 2.0.8a Build 237 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Minerva <= 2.0.8a Build 237 (phpbb_root_path) File Include Vulnerability. CVE-2006-3028. Webapps exploit for php platform |
| file | exploits/php/webapps/1908.txt |
| id | EDB-ID:1908 |
| last seen | 2016-01-31 |
| modified | 2006-06-13 |
| platform | php |
| port | |
| published | 2006-06-13 |
| reporter | Kacper |
| source | https://www.exploit-db.com/download/1908/ |
| title | Minerva <= 2.0.8a Build 237 - phpbb_root_path File Include Vulnerability |
| type | webapps |
References
- http://secunia.com/advisories/20536
- http://secunia.com/advisories/20536
- http://www.attrition.org/pipermail/vim/2006-June/000863.html
- http://www.attrition.org/pipermail/vim/2006-June/000863.html
- http://www.osvdb.org/26428
- http://www.osvdb.org/26428
- http://www.vupen.com/english/advisories/2006/2313
- http://www.vupen.com/english/advisories/2006/2313
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27060
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27060
- https://www.exploit-db.com/exploits/1908
- https://www.exploit-db.com/exploits/1908