CVE-2006-5045
published 2006-09-27CVE-2006-5045: Unspecified vulnerability in PollXT component (com_pollxt) 1.22.07 and earlier for Joomla! has unspecified impact and attack vectors, probably related to PHP…
PriorityP337medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EXPLOIT
EPSS
5.56%
91.9th percentile
Unspecified vulnerability in PollXT component (com_pollxt) 1.22.07 and earlier for Joomla! has unspecified impact and attack vectors, probably related to PHP remote file inclusion in the mosConfig_absolute_path to conf.pollxt.php.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| joomlaxt | com_pollxt | <= 1.22.07 | — |
CVSS provenance
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
vendor_redhat5.0MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-6g7v-43xg-47vc: Unspecified vulnerability in PollXT component (com_pollxt) 1
ghsa_unreviewed·2022-05-01
CVE-2006-5045 [MEDIUM] CWE-94 GHSA-6g7v-43xg-47vc: Unspecified vulnerability in PollXT component (com_pollxt) 1
Unspecified vulnerability in PollXT component (com_pollxt) 1.22.07 and earlier for Joomla! has unspecified impact and attack vectors, probably related to PHP remote file inclusion in the mosConfig_absolute_path to conf.pollxt.php.
Red Hat
CVE-2007-5045: Argument injection vulnerability in Apple QuickTime 7
vendor_redhat·CVSS 5.0
CVE-2007-5045 [MEDIUM] CVE-2007-5045: Argument injection vulnerability in Apple QuickTime 7
Argument injection vulnerability in Apple QuickTime 7.1.5 and earlier, when running on systems with Mozilla Firefox before 2.0.0.7 installed, allows remote attackers to execute arbitrary commands via a QuickTime Media Link (QTL) file with an embed XML element and a qtnext parameter containing the Firefox "-chrome" argument. NOTE: this is a related issue to CVE-2006-4965 and the result of an incomplete fix for CVE-2007-3670.
Statement: Not vulnerable. These issues did not affect the versions of Firefox as shipped with Red Hat Enterprise Linux.
No detection rules found.
No writeups or analysis indexed.
http://forum.joomla.org/index.php/topic%2C77975.0.htmlhttp://forum.joomla.org/index.php/topic%2C79477.0.htmlhttp://secunia.com/advisories/21068http://www.securityfocus.com/bid/19037http://www.vupen.com/english/advisories/2006/2843https://exchange.xforce.ibmcloud.com/vulnerabilities/27779http://forum.joomla.org/index.php/topic%2C77975.0.htmlhttp://forum.joomla.org/index.php/topic%2C79477.0.htmlhttp://secunia.com/advisories/21068http://www.securityfocus.com/bid/19037http://www.vupen.com/english/advisories/2006/2843https://exchange.xforce.ibmcloud.com/vulnerabilities/27779
2006-09-27
Published