Vulnerabilities > CVE-2006-7006 - Unspecified vulnerability in Robin DE Graff Somery 0.4.4
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
PHP remote file inclusion vulnerability in upload/admin/team.php in Robin de Graff Somery 0.4.4 allows remote attackers to execute arbitrary PHP code via a URL in the checkauth parameter. NOTE: CVE disputes this vulnerability because the checkauth parameter is only used in conditionals
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://archives.neohapsis.com/archives/bugtraq/2006-06/0242.html
- http://packetstorm.linuxsecurity.com/0606-exploits/Somery.txt
- http://www.root-security.org/danger/Somery.txt
- http://www.attrition.org/pipermail/vim/2007-February/001305.html
- http://www.securityfocus.com/bid/18412
- http://www.osvdb.org/27662