Vulnerabilities > CVE-2006-4714 - Unspecified vulnerability in Spoonlabs Vivvo Article Management CMS 3.2

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
spoonlabs
exploit available
NVD
Published: 2006-09-12
Updated: 2024-11-21

Summary

PHP remote file inclusion vulnerability in index.php in SpoonLabs Vivvo Article Management CMS (aka phpWordPress) 3.2 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the classified_path parameter.

Vulnerable Configurations

Part Description Count
Application
Spoonlabs
2

Exploit-Db

  • descriptionVivvo CMS <= 3.4 Multiple Vulnerabilities Destroyer Exploit. CVE-2006-4714,CVE-2006-4715,CVE-2007-3939. Webapps exploit for php platform
    idEDB-ID:6789
    last seen2016-02-01
    modified2008-10-19
    published2008-10-19
    reporterXianur0
    sourcehttps://www.exploit-db.com/download/6789/
    titleVivvo CMS <= 3.4 - Multiple Vulnerabilities Destroyer Exploit
  • descriptionVivvo Article Manager <= 3.2 (classified_path) File Include Vulnerability. CVE-2006-4714. Webapps exploit for php platform
    fileexploits/php/webapps/2339.txt
    idEDB-ID:2339
    last seen2016-01-31
    modified2006-09-09
    platformphp
    port
    published2006-09-09
    reporterMercilessTurk
    sourcehttps://www.exploit-db.com/download/2339/
    titleVivvo Article Manager <= 3.2 - classified_path File Include Vulnerability
    typewebapps

References