Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1770

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2006-1770
Last Modified 07 Mar 2011 09:33:50
Published 13 Apr 2006 06:02:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-1770

Summary

Multiple PHP remote file inclusion vulnerabilities in Azerbaijan Design & Development Group (AZDG) AzDGVote allow remote attackers to execute arbitrary PHP code via a URL in the int_path parameter in (1) vote.php, (2) view.php, (3) admin.php, and (4) admin/index.php.

Vulnerable Systems

Application

  • Azerbaijan Development Group Azdgvote 1.0


References

VUPEN - ADV-2006-1324

BUGTRAQ - 20060411 AzDGVote File inclusion

SECUNIA - 19630

XF - azdgvote-intpath-file-inclusion(25762)

BID - 17447

SREASON - 695


Last Updated: 27 May 2016 10:42:10