Vulnerabilities > CVE-2006-3173 - Unspecified vulnerability in Content*Builder 0.7.5

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
content-builder
exploit available
NVD
Published: 2006-06-23
Updated: 2024-11-21

Summary

Multiple PHP remote file inclusion vulnerabilities in Content*Builder 0.7.5 allow remote attackers to execute arbitrary PHP code via a URL in the (1) path[cb] parameter to (a) libraries/comment/postComment.php and (b) modules/poll/poll.php, (2) rel parameter to (c) modules/archive/overview.inc.php, and the (3) actualModuleDir parameter to (d) modules/forum/showThread.inc.php. NOTE: the provenance of this information is unknown; the details are obtained from third party information.

Vulnerable Configurations

Part Description Count
Application
Content\*Builder
1

Exploit-Db

descriptionContent Builder 0.7.5 postComment.php Remote File Include Vulnerability. CVE-2006-3173. Webapps exploit for php platform
idEDB-ID:30634
last seen2016-02-03
modified2007-10-03
published2007-10-03
reporterMehrad Ansari Targhi
sourcehttps://www.exploit-db.com/download/30634/
titleContent Builder 0.7.5 postComment.php Remote File Include Vulnerability

References