Vulnerabilities > CVE-2006-3475 - Unspecified vulnerability in Free Qboard Free Qboard 1.1
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN free-qboard
exploit available
Summary
Multiple PHP remote file inclusion vulnerabilities in free QBoard 1.1 allow remote attackers to execute arbitrary PHP code via a URL in the qb_path parameter to (1) index.php, (2) about.php, (3) contact.php, (4) delete.php, (5) faq.php, (6) features.php or (7) history.php, a different set of vectors than CVE-2006-2998.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
description free QBoard 1.1 contact.php qb_path Parameter Remote File Inclusion. CVE-2006-3475. Webapps exploit for php platform id EDB-ID:28152 last seen 2016-02-03 modified 2006-07-03 published 2006-07-03 reporter CrAsh_oVeR_rIdE source https://www.exploit-db.com/download/28152/ title free QBoard 1.1 contact.php qb_path Parameter Remote File Inclusion description free QBoard 1.1 history.php qb_path Parameter Remote File Inclusion. CVE-2006-3475. Webapps exploit for php platform id EDB-ID:28156 last seen 2016-02-03 modified 2006-07-03 published 2006-07-03 reporter CrAsh_oVeR_rIdE source https://www.exploit-db.com/download/28156/ title free QBoard 1.1 history.php qb_path Parameter Remote File Inclusion description free QBoard 1.1 index.php qb_path Parameter Remote File Inclusion. CVE-2006-3475. Webapps exploit for php platform id EDB-ID:28150 last seen 2016-02-03 modified 2006-07-03 published 2006-07-03 reporter CrAsh_oVeR_rIdE source https://www.exploit-db.com/download/28150/ title free QBoard 1.1 index.php qb_path Parameter Remote File Inclusion description free QBoard 1.1 faq.php qb_path Parameter Remote File Inclusion. CVE-2006-3475. Webapps exploit for php platform id EDB-ID:28154 last seen 2016-02-03 modified 2006-07-03 published 2006-07-03 reporter CrAsh_oVeR_rIdE source https://www.exploit-db.com/download/28154/ title free QBoard 1.1 faq.php qb_path Parameter Remote File Inclusion description free QBoard 1.1 about.php qb_path Parameter Remote File Inclusion. CVE-2006-3475 . Webapps exploit for php platform id EDB-ID:28151 last seen 2016-02-03 modified 2006-07-03 published 2006-07-03 reporter CrAsh_oVeR_rIdE source https://www.exploit-db.com/download/28151/ title free QBoard 1.1 about.php qb_path Parameter Remote File Inclusion description free QBoard 1.1 features.php qb_path Parameter Remote File Inclusion. CVE-2006-3475. Webapps exploit for php platform id EDB-ID:28155 last seen 2016-02-03 modified 2006-07-03 published 2006-07-03 reporter CrAsh_oVeR_rIdE source https://www.exploit-db.com/download/28155/ title free QBoard 1.1 features.php qb_path Parameter Remote File Inclusion
References
- http://securityreason.com/securityalert/1233
- http://securityreason.com/securityalert/1233
- http://securitytracker.com/id?1016433
- http://securitytracker.com/id?1016433
- http://www.osvdb.org/28059
- http://www.osvdb.org/28059
- http://www.osvdb.org/28060
- http://www.osvdb.org/28060
- http://www.osvdb.org/28061
- http://www.osvdb.org/28061
- http://www.osvdb.org/28062
- http://www.osvdb.org/28062
- http://www.osvdb.org/28063
- http://www.osvdb.org/28063
- http://www.osvdb.org/28064
- http://www.osvdb.org/28064
- http://www.osvdb.org/28065
- http://www.osvdb.org/28065
- http://www.securityfocus.com/archive/1/438951/100/0/threaded
- http://www.securityfocus.com/archive/1/438951/100/0/threaded
- http://www.securityfocus.com/archive/1/453293/100/0/threaded
- http://www.securityfocus.com/archive/1/453293/100/0/threaded
- http://www.securityfocus.com/bid/18788
- http://www.securityfocus.com/bid/18788
- http://www.securityfocus.com/bid/21394
- http://www.securityfocus.com/bid/21394
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27040
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27040