ID CVE-2006-5495
Summary Multiple PHP remote file inclusion vulnerabilities in Trawler Web CMS 1.8.1 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the (1) path_red2 parameter to (a) _msdazu_pdata/redaktion/artikel/up/index.php; (b) addtort.php, (c) colorpik2.php, (d) colorpik3.php, (e) extras_menu.php, (f) farbpalette.php, (g) lese_inc.php, and (h) newfile.php in _msdazu_share/richtext/; the (2) path_scr_dat2 parameter to (i)_msdazu_share/share/insert1.php; the (3) path_red parameter to (j) _msdazu_share/extras/downloads/index.php; and unspecified parameters in other files.
References
Vulnerable Configurations
  • cpe:2.3:a:trawler:trawler_web_cms:*:*:*:*:*:*:*:*
    cpe:2.3:a:trawler:trawler_web_cms:*:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 17-10-2018 - 21:43)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
refmap via4
bid
  • 20662
  • 20678
bugtraq 20061021 trawler <= 1.8.1 Remote File Inclusion
exploit-db 2611
misc http://cmsblog.msdazu.de/?p=209
osvdb
  • 29960
  • 29961
  • 29962
  • 29963
  • 29964
  • 29965
  • 29966
  • 29967
  • 29968
  • 29969
sectrack 1017111
secunia 22525
vupen ADV-2006-4152
xf trawler-pathred-file-include(29715)
Last major update 17-10-2018 - 21:43
Published 25-10-2006 - 10:07
Last modified 17-10-2018 - 21:43
Back to Top