Vulnerabilities > CVE-2006-6756 - Remote Security vulnerability in Ixprim CMS 1.2
Attack vector
NETWORK Attack complexity
HIGH Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
The code function in install.fct.php in Ixprim 1.2 produces a guessable value of the confidential IXP_CODE in mainfile.php, which might allow remote attackers to gain access to the administration panel via a brute force attack.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | Ixprim CMS 1.2 Remote Blind SQL Injection Exploit. CVE-2006-6755,CVE-2006-6756. Webapps exploit for php platform |
file | exploits/php/webapps/2975.pl |
id | EDB-ID:2975 |
last seen | 2016-01-31 |
modified | 2006-12-21 |
platform | php |
port | |
published | 2006-12-21 |
reporter | DarkFig |
source | https://www.exploit-db.com/download/2975/ |
title | Ixprim CMS 1.2 - Remote Blind SQL Injection Exploit |
type | webapps |