Vulnerabilities > CVE-2006-7128 - Remote File Include vulnerability in Salims Softhouse JAF CMS 4.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
PHP remote file inclusion vulnerability in forum/forum.php JAF CMS 4.0 RC1 allows remote attackers to execute arbitrary PHP code via a URL in the website parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description JAF CMS <= 4.0 RC1 (forum.php) Remote File Include Exploit. CVE-2006-7128,CVE-2008-1609. Webapps exploit for php platform file exploits/php/webapps/2469.pl id EDB-ID:2469 last seen 2016-01-31 modified 2006-10-03 platform php port published 2006-10-03 reporter Kacper source https://www.exploit-db.com/download/2469/ title JAF CMS <= 4.0 RC1 forum.php Remote File Include Exploit type webapps description JAF-CMS 4.0 RC2 Multiple Remote File Inclusion Vulnerabilities. CVE-2006-7127,CVE-2006-7128,CVE-2008-1609. Webapps exploit for php platform file exploits/php/webapps/5317.txt id EDB-ID:5317 last seen 2016-01-31 modified 2008-03-26 platform php port published 2008-03-26 reporter CraCkEr source https://www.exploit-db.com/download/5317/ title JAF-CMS 4.0 RC2 - Multiple Remote File Inclusion Vulnerabilities type webapps