Vulnerabilities > CVE-2006-6285 - Unspecified vulnerability in KAI Blankenhorn Bitfolge Simple and Nice Index File

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
kai-blankenhorn-bitfolge
exploit available

Summary

PHP remote file inclusion vulnerability in index.php in Kai Blankenhorn Bitfolge simple and nice index file (aka snif) 1.5.2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the externalConfig parameter. NOTE: CVE and other third parties dispute this vulnerability because $externalConfig is defined before use

Vulnerable Configurations

Part Description Count
Application
Kai_Blankenhorn_Bitfolge
1

Exploit-Db

idEDB-ID:2868