CVE-2006-1013

7.5

Critical

CVE-2006-1013

7 Mar 2006

cve@mitre.org

Deferred

Description

PHP remote file include vulnerability in index.php in SMartBlog (aka SMBlog) 1.2 allows remote attackers to include and execute arbitrary PHP files via (1) the pg parameter and (2) a query string without a parameter.

Exploits

273402006-03-01webappsPHP

SMBlog 1.2 - Arbitrary PHP Command Execution

By botan

References

cve@mitre.org

http://www.securityfocus.com/archive/1/426498/100/0/threaded

cve@mitre.org

http://www.securityfocus.com/bid/16905

cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/25220

af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/426498/100/0/threaded

af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/16905

af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/25220

CVE-2006-1013 - CVE-2006-1013 | Cyber Hub