CVE-2006-6756
published 2006-12-27CVE-2006-6756: The code function in install.fct.php in Ixprim 1.2 produces a guessable value of the confidential IXP_CODE in mainfile.php, which might allow remote attackers…
PriorityP430medium5.1CVSS 2.0
AVNACHAuNCPIPAP
EXPLOIT
EPSS
2.24%
80.6th percentile
The code function in install.fct.php in Ixprim 1.2 produces a guessable value of the confidential IXP_CODE in mainfile.php, which might allow remote attackers to gain access to the administration panel via a brute force attack.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ixprim | ixprim_cms | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://acid-root.new.fr/poc/16061221.txthttp://securityreason.com/securityalert/2073http://www.securityfocus.com/archive/1/455084/100/0/threadedhttps://exchange.xforce.ibmcloud.com/vulnerabilities/31142https://www.exploit-db.com/exploits/2975http://acid-root.new.fr/poc/16061221.txthttp://securityreason.com/securityalert/2073http://www.securityfocus.com/archive/1/455084/100/0/threadedhttps://exchange.xforce.ibmcloud.com/vulnerabilities/31142https://www.exploit-db.com/exploits/2975
2006-12-27
Published