CVE-2006-2528
published 2006-05-22CVE-2006-2528: PHP remote file inclusion vulnerability in classified_right.php in phpBazar 2.1.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL…
PriorityP341medium6.4CVSS 2.0
AVNACLAuNCPIPAN
EXPLOIT
EPSS
2.98%
85.6th percentile
PHP remote file inclusion vulnerability in classified_right.php in phpBazar 2.1.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the language_dir parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| smartisoft | phpbazar | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://secunia.com/advisories/20198http://securityreason.com/securityalert/933http://www.osvdb.org/25700http://www.securityfocus.com/archive/1/434558http://www.securityfocus.com/bid/18052https://exchange.xforce.ibmcloud.com/vulnerabilities/26618http://secunia.com/advisories/20198http://securityreason.com/securityalert/933http://www.osvdb.org/25700http://www.securityfocus.com/archive/1/434558http://www.securityfocus.com/bid/18052https://exchange.xforce.ibmcloud.com/vulnerabilities/26618
2006-05-22
Published