CVE-2006-4423
published 2006-08-29CVE-2006-4423: Multiple PHP remote file inclusion vulnerabilities in Bigace 1.8.2 allow remote attackers to execute arbitrary PHP code via a URL in the (1)…
PriorityP341high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
3.01%
85.7th percentile
Multiple PHP remote file inclusion vulnerabilities in Bigace 1.8.2 allow remote attackers to execute arbitrary PHP code via a URL in the (1) GLOBALS[_BIGACE][DIR][admin] parameter in (a) system/command/admin.cmd.php, (b) admin/include/upload_form.php, and (c) admin/include/item_main.php; and the (2) GLOBALS[_BIGACE][DIR][libs] parameter in (d) system/command/admin.cmd.php and (e) system/command/download.cmd.php.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| bigace | bigace | — | — |
| bigace | bigace | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-rfp2-4wxc-f3jf: Multiple PHP remote file inclusion vulnerabilities in BigACE 2
ghsa_unreviewed·2022-05-01·CVSS 7.5
CVE-2008-2520 [HIGH] CWE-94 GHSA-rfp2-4wxc-f3jf: Multiple PHP remote file inclusion vulnerabilities in BigACE 2
Multiple PHP remote file inclusion vulnerabilities in BigACE 2.4, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the (1) GLOBALS[_BIGACE][DIR][addon] parameter to (a) addon/smarty/plugins/function.captcha.php and (b) system/classes/sql/AdoDBConnection.php; and the (2) GLOBALS[_BIGACE][DIR][admin] parameter to (c) item_information.php and (d) jstree.php in system/application/util/, and (e) system/admin/plugins/menu/menuTree/plugin.php, different vectors than CVE-2006-4423.
GHSA
GHSA-gcc2-56h2-xhh2: Multiple PHP remote file inclusion vulnerabilities in Bigace 1
ghsa_unreviewed·2022-05-01
CVE-2006-4423 [HIGH] GHSA-gcc2-56h2-xhh2: Multiple PHP remote file inclusion vulnerabilities in Bigace 1
Multiple PHP remote file inclusion vulnerabilities in Bigace 1.8.2 allow remote attackers to execute arbitrary PHP code via a URL in the (1) GLOBALS[_BIGACE][DIR][admin] parameter in (a) system/command/admin.cmd.php, (b) admin/include/upload_form.php, and (c) admin/include/item_main.php; and the (2) GLOBALS[_BIGACE][DIR][libs] parameter in (d) system/command/admin.cmd.php and (e) system/command/download.cmd.php.
No detection rules found.
Exploit-DB
BigACE 1.8.2 - 'download.cmd.php' Remote File Inclusion
exploitdb·2006-08-26
CVE-2006-4423 BigACE 1.8.2 - 'download.cmd.php' Remote File Inclusion
BigACE 1.8.2 - 'download.cmd.php' Remote File Inclusion
---
source: https://www.securityfocus.com/bid/19723/info
Bigace is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input.
An attacker can exploit these issues to include arbitrary remote PHP code and execute it in the context of the webserver process.
A successful exploit may lead to a compromise of the underlying system; other attacks are also possible.
Version 1.8.2 of Bigace is known to be vulnerable; previous versions may be affected as well.
http://www.example.com/[Bigace]/system/command/download.cmd.php?GLOBALS=[Evil Script]
Exploit-DB
BigACE 1.8.2 - 'item_main.php' Remote File Inclusion
exploitdb·2006-08-26
CVE-2006-4423 BigACE 1.8.2 - 'item_main.php' Remote File Inclusion
BigACE 1.8.2 - 'item_main.php' Remote File Inclusion
---
source: https://www.securityfocus.com/bid/19723/info
Bigace is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input.
An attacker can exploit these issues to include arbitrary remote PHP code and execute it in the context of the webserver process.
A successful exploit may lead to a compromise of the underlying system; other attacks are also possible.
Version 1.8.2 of Bigace is known to be vulnerable; previous versions may be affected as well.
http://www.example.com/[Bigace]/system/admin/include/item_main.php?GLOBALS=[Evil Script]
Exploit-DB
BigACE 1.8.2 - 'upload_form.php' Remote File Inclusion
exploitdb·2006-08-26
CVE-2006-4423 BigACE 1.8.2 - 'upload_form.php' Remote File Inclusion
BigACE 1.8.2 - 'upload_form.php' Remote File Inclusion
---
source: https://www.securityfocus.com/bid/19723/info
Bigace is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input.
An attacker can exploit these issues to include arbitrary remote PHP code and execute it in the context of the webserver process.
A successful exploit may lead to a compromise of the underlying system; other attacks are also possible.
Version 1.8.2 of Bigace is known to be vulnerable; previous versions may be affected as well.
http://www.example.com/[Bigace]/system/admin/include/upload_form.php?GLOBALS=[Evil Script]
Exploit-DB
BigACE 1.8.2 - 'admin.cmd.php' Remote File Inclusion
exploitdb·2006-08-26
CVE-2006-4423 BigACE 1.8.2 - 'admin.cmd.php' Remote File Inclusion
BigACE 1.8.2 - 'admin.cmd.php' Remote File Inclusion
---
source: https://www.securityfocus.com/bid/19723/info
Bigace is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input.
An attacker can exploit these issues to include arbitrary remote PHP code and execute it in the context of the webserver process.
A successful exploit may lead to a compromise of the underlying system; other attacks are also possible.
Version 1.8.2 of Bigace is known to be vulnerable; previous versions may be affected as well.
http://www.example.com/[Bigace]/system/command/admin.cmd.php?GLOBALS=[Evil Script]
No writeups or analysis indexed.
http://securityreason.com/securityalert/1462http://securitytracker.com/id?1016760http://www.securityfocus.com/archive/1/444415/100/0/threadedhttp://www.securityfocus.com/bid/19723https://exchange.xforce.ibmcloud.com/vulnerabilities/28585http://securityreason.com/securityalert/1462http://securitytracker.com/id?1016760http://www.securityfocus.com/archive/1/444415/100/0/threadedhttp://www.securityfocus.com/bid/19723https://exchange.xforce.ibmcloud.com/vulnerabilities/28585
2006-08-29
Published