CVE-2006-1382 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2006-1382
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-1382

Description: PHP remote file inclusion vulnerability in impex/ImpExData.php in vBulletin ImpEx module 1.74, when register_globals is disabled, allows remote attackers to include arbitrary files via the systempath parameter.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/25391 http://xforce.iss.net/xforce/xfdb/34095 SAID Secunia Advisory: SA19352 OSVDB 24070 FULLDISC http://lists.grok.org.uk/pipermail/full-disclosure/2006-March/044318.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/467666/100/0/threaded BID 17206

Return to the previous page.