Vulnerabilities > CVE-2006-6137 - Unspecified vulnerability in Sisfo Kampus Sisfo Kampus 0.8

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

sisfo-kampus

exploit available

NVD

Published: 2006-11-28

Updated: 2024-11-21

Summary

Multiple PHP remote file inclusion vulnerabilities in Sisfo Kampus 0.8 allow remote attackers to execute arbitrary PHP code via a URL in the (1) exec parameter to index.php or (2) print parameter to print.php, which is also accessible via the print command to index.php.

Vulnerable Configurations

Part	Description	Count
Application	Sisfo_Kampus Sisfo Kampus Sisfo Kampus 0.8	1

Exploit-Db

description	Sisfo Kampus <= 0.8 Remote File Inclusion / Download Vulnerabilities. CVE-2006-6137,CVE-2006-6138,CVE-2006-6140. Webapps exploit for php platform
file	exploits/php/webapps/2847.txt
id	EDB-ID:2847
last seen	2016-01-31
modified	2006-11-25
platform	php
port
published	2006-11-25
reporter	Wawan Firmansyah
source	https://www.exploit-db.com/download/2847/
title	Sisfo Kampus <= 0.8 - Remote File Inclusion / Download Vulnerabilities
type	webapps

Summary

Vulnerable Configurations

Exploit-Db

References