CVE-2006-2568
Published May 24, 2006
Last updated 7 years ago
Overview
- Description
- PHP remote file inclusion vulnerability in addpost_newpoll.php in UBB.threads 6.4 through 6.5.2 and 6.5.1.1 (trial) allows remote attackers to execute arbitrary PHP code via a URL in the thispath parameter.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 5.1
- Impact score
- 6.4
- Exploitability score
- 4.9
- Vector string
- AV:N/AC:H/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ubbcentral:ubb.threads:6.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3E52E29B-9461-4D62-8CCA-6F12DEB63EC6"
},
{
"criteria": "cpe:2.3:a:ubbcentral:ubb.threads:6.4.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4F82ADBA-67A1-47E8-8D09-21138BDE84AF"
},
{
"criteria": "cpe:2.3:a:ubbcentral:ubb.threads:6.4.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FD0DFCB9-3033-4509-BEDC-2B032524C4CD"
},
{
"criteria": "cpe:2.3:a:ubbcentral:ubb.threads:6.4.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "124A5853-5C97-412B-B55B-7430B23565DC"
},
{
"criteria": "cpe:2.3:a:ubbcentral:ubb.threads:6.4.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E0ED5EF0-FF8B-4C4B-8157-FBCBF1B34C5D"
},
{
"criteria": "cpe:2.3:a:ubbcentral:ubb.threads:6.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "66D3CCE6-909B-46F4-AD8F-603E433C01D2"
},
{
"criteria": "cpe:2.3:a:ubbcentral:ubb.threads:6.5.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "803A29EC-E63B-4F66-93E1-60698EE76011"
},
{
"criteria": "cpe:2.3:a:ubbcentral:ubb.threads:6.5.1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3159B6DF-CE17-490F-AA01-03E5D2EAC7B4"
},
{
"criteria": "cpe:2.3:a:ubbcentral:ubb.threads:6.5.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "07593CA3-8583-44FE-82CB-9DB32C988766"
}
],
"operator": "OR"
}
]
}
]