Search Results | AttackerKB

Show filters

Clear All

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

1 Total Results

Displaying 1-1 of 1

Attacker Value

Unknown

CVE-2006-4677

Disclosure Date: September 11, 2006 (last updated November 08, 2023)

PHP remote file inclusion vulnerability in contrib/yabbse/poc.php in phpopenchat before 3.0.2 allows remote attackers to execute arbitrary PHP code via the sourcedir parameter. NOTE: this issue was disputed by a third-party researcher who stated that the _REQUEST parameters were dynamically unset at the beginning of the file. Another researcher noted, and CVE agrees, that the unset PHP function can be bypassed (CVE-2006-3017). If this issue is due to a vulnerability in PHP, then it should be excluded from CVE

Hello Everyone! We have made some updates to AttackerKB in the last few months.

New tags:

New workers:

1 Total Results

Displaying 1-1 of 1

Unknown

CVE-2006-4677

Hello Everyone! We have made some updates to AttackerKB in the last few months.

New tags:

New workers:

1 Total Results

Displaying 1-1 of 1

Unknown

CVE-2006-4677

Quick Cookie Notification