Vulnerabilities > CVE-2006-7128 - Unspecified vulnerability in Salims Softhouse JAF CMS 4.0
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN salims-softhouse
exploit available
Summary
PHP remote file inclusion vulnerability in forum/forum.php JAF CMS 4.0 RC1 allows remote attackers to execute arbitrary PHP code via a URL in the website parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
description JAF CMS <= 4.0 RC1 (forum.php) Remote File Include Exploit. CVE-2006-7128,CVE-2008-1609. Webapps exploit for php platform file exploits/php/webapps/2469.pl id EDB-ID:2469 last seen 2016-01-31 modified 2006-10-03 platform php port published 2006-10-03 reporter Kacper source https://www.exploit-db.com/download/2469/ title JAF CMS <= 4.0 RC1 forum.php Remote File Include Exploit type webapps description JAF-CMS 4.0 RC2 Multiple Remote File Inclusion Vulnerabilities. CVE-2006-7127,CVE-2006-7128,CVE-2008-1609. Webapps exploit for php platform file exploits/php/webapps/5317.txt id EDB-ID:5317 last seen 2016-01-31 modified 2008-03-26 platform php port published 2008-03-26 reporter CraCkEr source https://www.exploit-db.com/download/5317/ title JAF-CMS 4.0 RC2 - Multiple Remote File Inclusion Vulnerabilities type webapps
References
- http://secunia.com/advisories/22143
- http://www.rahim.webd.pl/exploity/Exploits/92.txt
- http://www.securityfocus.com/bid/20310
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29322
- https://www.exploit-db.com/exploits/2469
- http://secunia.com/advisories/22143
- https://www.exploit-db.com/exploits/2469
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29322
- http://www.securityfocus.com/bid/20310
- http://www.rahim.webd.pl/exploity/Exploits/92.txt