Vulnerabilities > CVE-2006-4278 - Remote File Include vulnerability in Sportsphool 1.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
PHP remote file inclusion vulnerability in includes/layout/plain.footer.php in SportsPHool 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the mainnav parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description SportsPHool <= 1.0 (mainnav) Remote File Include Vulnerability. CVE-2006-4278. Webapps exploit for php platform file exploits/php/webapps/2227.txt id EDB-ID:2227 last seen 2016-01-31 modified 2006-08-20 platform php port published 2006-08-20 reporter Kacper source https://www.exploit-db.com/download/2227/ title SportsPHool <= 1.0 mainnav Remote File Include Vulnerability type webapps description Sports PHool <= 1.0 - Remote File Include Exploit. CVE-2006-4278. Webapps exploit for php platform id EDB-ID:18018 last seen 2016-02-02 modified 2011-10-21 published 2011-10-21 reporter cr4wl3r source https://www.exploit-db.com/download/18018/ title Sports PHool <= 1.0 - Remote File Include Exploit