CVE-2006-6086
published 2006-11-24CVE-2006-6086: PHP remote file inclusion vulnerability in src/ark_inc.php in e-Ark 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the cfg_pear_path…
PriorityP337medium5.1CVSS 2.0
AVNACHAuNCPIPAP
EXPLOIT
EPSS
2.96%
85.5th percentile
PHP remote file inclusion vulnerability in src/ark_inc.php in e-Ark 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the cfg_pear_path parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| e-ark | e-ark | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-gc98-v57j-w56g: Multiple PHP remote file inclusion vulnerabilities in eArk (e-Ark) 1
ghsa_unreviewed·2022-05-01·CVSS 5.1
CVE-2007-5216 [MEDIUM] CWE-94 GHSA-gc98-v57j-w56g: Multiple PHP remote file inclusion vulnerabilities in eArk (e-Ark) 1
Multiple PHP remote file inclusion vulnerabilities in eArk (e-Ark) 1.0 allow remote attackers to execute arbitrary PHP code via a URL in (1) the cfg_vcard_path parameter to src/vcard_inc.php or (2) the cfg_phpmailer_path parameter to src/email_inc.php. NOTE: the ark_inc.php vector is already covered by CVE-2006-6086.
GHSA
GHSA-w87m-86mj-58qj: PHP remote file inclusion vulnerability in src/ark_inc
ghsa_unreviewed·2022-05-01
CVE-2006-6086 [MEDIUM] CWE-94 GHSA-w87m-86mj-58qj: PHP remote file inclusion vulnerability in src/ark_inc
PHP remote file inclusion vulnerability in src/ark_inc.php in e-Ark 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the cfg_pear_path parameter.
No detection rules found.
No writeups or analysis indexed.
http://arfis.wordpress.com/2007/09/13/rfi-02-eark/http://secunia.com/advisories/23059http://www.securityfocus.com/bid/21224http://www.vupen.com/english/advisories/2006/4661https://exchange.xforce.ibmcloud.com/vulnerabilities/30457https://www.exploit-db.com/exploits/2818http://arfis.wordpress.com/2007/09/13/rfi-02-eark/http://secunia.com/advisories/23059http://www.securityfocus.com/bid/21224http://www.vupen.com/english/advisories/2006/4661https://exchange.xforce.ibmcloud.com/vulnerabilities/30457https://www.exploit-db.com/exploits/2818
2006-11-24
Published