Vulnerabilities > CVE-2006-7069 - Unspecified vulnerability in Socketwiz Bookmarks
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN socketwiz
exploit available
Summary
PHP remote file inclusion vulnerability in smarty_config.php in Socketwiz Bookmarks 2.0 and earlier allows remote attackers to execute arbitrary PHP code via the root_dir parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Socketwiz Bookmarks <= 2.0 (root_dir) Remote File Include Exploit. CVE-2006-7069. Webapps exploit for php platform |
| file | exploits/php/webapps/2336.pl |
| id | EDB-ID:2336 |
| last seen | 2016-01-31 |
| modified | 2006-09-09 |
| platform | php |
| port | |
| published | 2006-09-09 |
| reporter | Kacper |
| source | https://www.exploit-db.com/download/2336/ |
| title | Socketwiz Bookmarks <= 2.0 root_dir Remote File Include Exploit |
| type | webapps |
References
- http://secunia.com/advisories/21857
- http://www.securityfocus.com/bid/19935
- http://www.vupen.com/english/advisories/2006/3550
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28850
- https://www.exploit-db.com/exploits/2336
- http://secunia.com/advisories/21857
- https://www.exploit-db.com/exploits/2336
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28850
- http://www.vupen.com/english/advisories/2006/3550
- http://www.securityfocus.com/bid/19935