CVE-2006-4721
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2006-4721
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Directory traversal vulnerability in admin.php in CCleague Pro Sports CMS 1.0.1 RC1 allows remote attackers to read and execute arbitrary local files via a .. (dot dot) sequence and trailing null (%00) byte in the language Cookie parameter, as demonstrated by executing PHP code via a log file.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
CCleague Pro Sports CMS 'admin.php'目录遍历漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
CCleague Pro Sports CMS 1.0.1 RC1的admin.php中存在目录遍历漏洞,远程攻击者通过语言Cookie参数(该参数中包含..)序列和结尾的空(%00)字节读取和执行任意本地文件,如通过日志文件执行PHP代码所示。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2006-4721
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2006-4721
请登录查看更多情报信息。
- http://unkn0wn.awardspace.com/Blog/?p=46x_refsource_MISC
- https://nvd.nist.gov/vuln/detail/CVE-2006-4721
Same Patch Batch · n/a · 2006-09-12 · 34 CVEs total
| CVE-2006-4381 | Apple QuickTime多个缓冲区溢出及处理异常漏洞 | |
| CVE-2006-4720 | MCGalleryPRO 'random2.php'PHP远程文件包含漏洞 | |
| CVE-2006-4722 | Devsyn Open Bulletin Board 'Index.PHP'PHP远程文件包含漏洞 | |
| CVE-2006-4723 | RaidenHTTPD 'check.php' PHP远程文件包含漏洞 | |
| CVE-2006-0001 | Microsoft Publisher 栈溢出漏洞 | |
| CVE-2006-0032 | Microsoft Windows 跨站脚本漏洞 | |
| CVE-2006-3311 | Apple Mac OS X多个命令执行及拒绝服务漏洞 | |
| CVE-2006-3442 | Microsoft PGM 缓冲区溢出漏洞 | |
| CVE-2006-3873 | Microsoft IE压缩内容URL堆溢出漏洞 | |
| CVE-2006-4719 | MyABraCaDaWeb 多个PHP远程文件包含漏洞 | |
| CVE-2006-4382 | Apple QuickTime 多个缓冲区溢出漏洞 | |
| CVE-2006-4384 | Apple QuickTime多个缓冲区溢出及处理异常漏洞 | |
| CVE-2006-4385 | Apple QuickTime 多个缓冲区溢出及处理异常漏洞 | |
| CVE-2006-4386 | Apple QuickTime 多个缓冲区溢出及处理异常漏洞 | |
| CVE-2006-4388 | Apple QuickTime 多个缓冲区溢出及处理异常漏洞 | |
| CVE-2006-4389 | Apple QuickTime多个缓冲区溢出及处理异常漏洞 | |
| CVE-2006-4640 | Apple Mac OS X多个命令执行及拒绝服务漏洞 | |
| CVE-2006-2658 | Mono/C# mod_mono模块 目录遍历漏洞 | |
| CVE-2006-4718 | KorviBlog 'Livre_or.PHP' 跨站脚本攻击漏洞 | |
| CVE-2006-4717 | Drupal Pubcookie模块认证绕过漏洞 |
Showing top 20 of 34 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
V. Comments for CVE-2006-4721
No comments yet