CVE-2006-4236

Multiple PHP remote file inclusion vulnerabilities in POWERGAP allow remote attackers to execute arbitrary PHP code via a URL in the (1) shopid parameter to (a) s01.php, (b) s02.php, (c) s03.php, and (d) s04.php; and possibly a URL located after "shopid=" or "sid=" in the PATH_INFO.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:powergap:powergap_business:*:*:*:*:*:*:*:*
cpe:2.3:a:powergap:powergap_lite:*:*:*:*:*:*:*:*

History

21 Nov 2024, 00:15

Type Values Removed Values Added
References () http://securityreason.com/securityalert/1417 - () http://securityreason.com/securityalert/1417 -
References () http://securitytracker.com/id?1016715 - () http://securitytracker.com/id?1016715 -
References () http://www.osvdb.org/29496 - () http://www.osvdb.org/29496 -
References () http://www.osvdb.org/29497 - () http://www.osvdb.org/29497 -
References () http://www.osvdb.org/29498 - () http://www.osvdb.org/29498 -
References () http://www.osvdb.org/29499 - () http://www.osvdb.org/29499 -
References () http://www.osvdb.org/29500 - () http://www.osvdb.org/29500 -
References () http://www.securityfocus.com/archive/1/443469/100/0/threaded - () http://www.securityfocus.com/archive/1/443469/100/0/threaded -
References () http://www.securityfocus.com/bid/19565 - Exploit () http://www.securityfocus.com/bid/19565 - Exploit
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/28425 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/28425 -
References () https://www.exploit-db.com/exploits/2201 - () https://www.exploit-db.com/exploits/2201 -

Information

Published : 2006-08-21 18:04

Updated : 2024-11-21 00:15


NVD link : CVE-2006-4236

Mitre link : CVE-2006-4236

CVE.ORG link : CVE-2006-4236


JSON object : View

Products Affected

powergap

  • powergap_business
  • powergap_lite