CVE-2006-0502 in FarsiNewsinfo

Summary

PHP remote file inclusion vulnerability in loginout.php in FarsiNews 2.1 Beta 2 and earlier, with register_globals enabled, allows remote attackers to include arbitrary files via a URL in the cutepath parameter.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

02/01/2006

Disclosure

02/01/2006

Moderation

VulDB entry created

Entries

VDB-28539 (1)

CPE

ready

CWE

CWE-73 (Confirmed)

Exploit

Download

CVSS

7.3

EPSS

0.14098

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2006-0502
NVD	https://nvd.nist.gov/vuln/detail/CVE-2006-0502
CVE Details	https://www.cvedetails.com/cve/CVE-2006-0502/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!