Vulnerabilities > CVE-2006-4428 - Unspecified vulnerability in Jupiter CMS Jupiter CMS 1.1.5

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
jupiter-cms
exploit available
NVD
Published: 2006-08-29
Updated: 2024-04-11

Summary

PHP remote file inclusion vulnerability in index.php in Jupiter CMS 1.1.5 allows remote attackers to execute arbitrary PHP code via a URL in the template parameter. NOTE: CVE disputes this claim, since the $template variable is defined as a static value before it is referenced in an include statement

Vulnerable Configurations

Part Description Count
Application
Jupiter_Cms
1

Exploit-Db

descriptionJupiter CMS 1.1.5 Index.PHP Remote File Include Vulnerability. CVE-2006-4428. Webapps exploit for php platform
idEDB-ID:28430
last seen2016-02-03
modified2006-08-26
published2006-08-26
reporterD3nGeR
sourcehttps://www.exploit-db.com/download/28430/
titleJupiter CMS 1.1.5 Index.PHP Remote File Include Vulnerability

References