Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2006-5402

EPSS 11.73% · P94
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2006-5402

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Multiple PHP remote file inclusion vulnerabilities in PHPmybibli 3.0.1 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the (1) class_path, (2) javascript_path, and (3) include_path parameters in (a) cart.php; the (4) class_path parameter in (b) index.php; the (5) javascript_path parameter in (c) edit.php; the (6) include_path parameter in (d) circ.php; unspecified parameters in (e) select.php; and unspecified parameters in other files.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
PHPMybibli 多个PHP远程文件包含漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
PHPmybibli 3.0.1和更早版本中的多个PHP远程文件包含漏洞,远程攻击者可以通过(1)class_path,(2)javascript_path和(3)(a)cart.php的include_path参数;(4)(b)index.php的class_path参数;(5)(c)edit.php的javascript_path参数;(6)(d)circ.php的include_path参数;(e)select.php的不明参数;以及其他文件的不明参数中的URL来执行任意PHP代码。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2006-5402

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2006-5402

登录查看更多情报信息。

Same Patch Batch · n/a · 2006-10-18 · 71 CVEs total

CVE-2006-5354Oracle HTTP Server/Application Server/Oracle Collaboration/ Oracle E-Business Suite and Ap
CVE-2006-5374Oracle Pharmaceutical Applications 未明认证漏洞
CVE-2006-5372Oracle E-Business Suite 多个未明漏洞
CVE-2006-5361Oracle October 2006 Security Update多个未明漏洞
CVE-2006-5360Oracle Application Server Oracle Forms组件未明漏洞
CVE-2006-5359OOracle Application Server以及Oracle E-Business Suite and Applications多个未明漏洞
CVE-2006-5358Oracle Application Server Oracle Forms组件未明漏洞
CVE-2006-5357Oracle Application Server Oracle HTTP Server不明漏洞
CVE-2006-5356Oracle Application Server/Collaboration Suite J2EE Oracle Containers组件未明漏洞
CVE-2006-5355Oracle Application Server/Collaboration Suite/Oracle E-Business Suite and Applications Ora
CVE-2006-5362Oracle Application Server J2EE组件Oracle Containers 未明漏洞
CVE-2006-5353Oracle Application Serve/Oracle Collaboration Suite Oracle HTTP Server组件未明漏洞
CVE-2006-5352Oracle Application Express 多个未明漏洞
CVE-2006-5351Oracle Application Express 多个未明漏洞
CVE-2006-5350Oracle HTTP Server 和Oracle E-Business Suite and Applications 未明安全漏洞
CVE-2006-5349Oracle HTTP Server HP Tru64未明漏洞
CVE-2006-5348Oracle HTTP Server/Oracle Collaboration Suite/Oracle E-Business Suite and Applications HTT
CVE-2006-5347Oracle HTTP Server和Oracle Collaboration Suite HTTPS和SSL未明漏洞
CVE-2006-5346Oracle HTTP Server/Oracle Collaboration Suite/Oracle E-Business Suite and Applications 'ht
CVE-2006-5345Oracle Database Oracle Spatial组件'mdsys.sdo_geom'未明漏洞

Showing top 20 of 71 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2006-5402

No comments yet

Leave a comment