Vulnerabilities > CVE-2006-6045 - Remote Security vulnerability in Comdev ONE Admin PRO 4.1

047910
CVSS 6.8 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
comdev
exploit available
NVD
Published: 2006-11-22
Updated: 2018-10-17

Summary

Multiple PHP remote file inclusion vulnerabilities in Comdev One Admin Pro 4.1 allow remote attackers to execute arbitrary PHP code via a URL in the path[skin] parameter to (1) adminfoot.php, (2) adminhead.php, or (3) adminlogin.php.

Vulnerable Configurations

Part Description Count
Application
Comdev
1

Exploit-Db

descriptionComdev One Admin 4.1 adminfoot.php Remote Code Execution Exploit. CVE-2006-6045. Webapps exploit for php platform
idEDB-ID:2573
last seen2016-01-31
modified2006-10-16
published2006-10-16
reporterw4ck1ng
sourcehttps://www.exploit-db.com/download/2573/
titleComdev One Admin 4.1 adminfoot.php Remote Code Execution Exploit

References