Vulnerabilities > CVE-2006-4426 - Unspecified vulnerability in Albert Albert-Easysite 0.8.12
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN albert
exploit available
Summary
PHP remote file inclusion vulnerability in AES/modules/auth/phpsecurityadmin/include/logout.php in AlberT-EasySite (AES) 1.0a5 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the PSA_PATH parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
Exploit-Db
| description | AlberT-EasySite <= 1.0a5 (PSA_PATH) Remote File Include Exploit. CVE-2006-4426. Webapps exploit for php platform |
| file | exploits/php/webapps/2260.pl |
| id | EDB-ID:2260 |
| last seen | 2016-01-31 |
| modified | 2006-08-27 |
| platform | php |
| port | |
| published | 2006-08-27 |
| reporter | Kacper |
| source | https://www.exploit-db.com/download/2260/ |
| title | AlberT-EasySite <= 1.0a5 PSA_PATH Remote File Include Exploit |
| type | webapps |
References
- http://secunia.com/advisories/21651
- http://secunia.com/advisories/21651
- http://www.securityfocus.com/archive/1/448292/100/0/threaded
- http://www.securityfocus.com/archive/1/448292/100/0/threaded
- http://www.securityfocus.com/bid/19729
- http://www.securityfocus.com/bid/19729
- http://www.vupen.com/english/advisories/2006/3395
- http://www.vupen.com/english/advisories/2006/3395
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28584
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28584
- https://www.exploit-db.com/exploits/2260
- https://www.exploit-db.com/exploits/2260