{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-05-25T00:00:00", "descriptions": [{"lang": "en", "value": "PHP remote file inclusion vulnerabilities in ActionApps 2.8.1 allow remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[AA_INC_PATH] parameter in (1) cached.php3, (2) cron.php3, (3) discussion.php3, (4) filldisc.php3, (5) filler.php3, (6) fillform.php3, (7) go.php3, (8) hiercons.php3, (9) jsview.php3, (10) live_checkbox.php3, (11) offline.php3, (12) post2shtml.php3, (13) search.php3, (14) slice.php3, (15) sql_update.php3, (16) view.php3, (17) multiple files in the (18) admin/ folder, (19) includes folder, and (20) modules/ folder."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-10-18T16:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "27308", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27308"}, {"name": "27289", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27289"}, {"name": "27304", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27304"}, {"name": "27269", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27269"}, {"name": "27256", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27256"}, {"name": "1829", "tags": ["exploit", "x_refsource_EXPLOIT-DB"], "url": "https://www.exploit-db.com/exploits/1829"}, {"name": "27275", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27275"}, {"name": "27270", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27270"}, {"name": "27292", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27292"}, {"name": "actionapps-globals-file-include(26776)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/26776"}, {"name": "ADV-2006-1997", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2006/1997"}, {"name": "27305", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27305"}, {"name": "27272", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27272"}, {"name": "27278", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27278"}, {"name": "27294", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27294"}, {"name": "27273", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27273"}, {"name": "27287", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27287"}, {"name": "27274", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27274"}, {"name": "27284", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27284"}, {"name": "27253", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27253"}, {"name": "27276", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27276"}, {"name": "27306", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27306"}, {"name": "27263", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27263"}, {"name": "27298", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27298"}, {"name": "27295", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27295"}, {"name": "27271", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27271"}, {"name": "27288", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27288"}, {"name": "27310", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27310"}, {"name": "27264", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27264"}, {"name": "27262", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27262"}, {"name": "27257", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27257"}, {"name": "27259", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27259"}, {"name": "27280", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27280"}, {"name": "20299", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/20299"}, {"name": "27309", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27309"}, {"name": "27291", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27291"}, {"name": "27267", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27267"}, {"name": "27281", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27281"}, {"name": "27282", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27282"}, {"name": "27301", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27301"}, {"name": "27254", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27254"}, {"name": "27268", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27268"}, {"name": "27258", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27258"}, {"name": "27299", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27299"}, {"name": "27300", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27300"}, {"name": "27297", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27297"}, {"name": "27285", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27285"}, {"name": "27286", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27286"}, {"name": "27296", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27296"}, {"name": "27303", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27303"}, {"name": "27279", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27279"}, {"name": "27277", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27277"}, {"name": "19133", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/19133"}, {"name": "27283", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27283"}, {"name": "27261", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27261"}, {"name": "27302", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27302"}, {"name": "27260", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27260"}, {"name": "27266", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27266"}, {"name": "27290", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27290"}, {"name": "27293", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27293"}, {"name": "27265", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27265"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-2686", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "PHP remote file inclusion vulnerabilities in ActionApps 2.8.1 allow remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[AA_INC_PATH] parameter in (1) cached.php3, (2) cron.php3, (3) discussion.php3, (4) filldisc.php3, (5) filler.php3, (6) fillform.php3, (7) go.php3, (8) hiercons.php3, (9) jsview.php3, (10) live_checkbox.php3, (11) offline.php3, (12) post2shtml.php3, (13) search.php3, (14) slice.php3, (15) sql_update.php3, (16) view.php3, (17) multiple files in the (18) admin/ folder, (19) includes folder, and (20) modules/ folder."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "27308", "refsource": "OSVDB", "url": "http://www.osvdb.org/27308"}, {"name": "27289", "refsource": "OSVDB", "url": "http://www.osvdb.org/27289"}, {"name": "27304", "refsource": "OSVDB", "url": "http://www.osvdb.org/27304"}, {"name": "27269", "refsource": "OSVDB", "url": "http://www.osvdb.org/27269"}, {"name": "27256", "refsource": "OSVDB", "url": "http://www.osvdb.org/27256"}, {"name": "1829", "refsource": "EXPLOIT-DB", "url": "https://www.exploit-db.com/exploits/1829"}, {"name": "27275", "refsource": "OSVDB", "url": "http://www.osvdb.org/27275"}, {"name": "27270", "refsource": "OSVDB", "url": "http://www.osvdb.org/27270"}, {"name": "27292", "refsource": "OSVDB", "url": "http://www.osvdb.org/27292"}, {"name": "actionapps-globals-file-include(26776)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/26776"}, {"name": "ADV-2006-1997", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2006/1997"}, {"name": "27305", "refsource": "OSVDB", "url": "http://www.osvdb.org/27305"}, {"name": "27272", "refsource": "OSVDB", "url": "http://www.osvdb.org/27272"}, {"name": "27278", "refsource": "OSVDB", "url": "http://www.osvdb.org/27278"}, {"name": "27294", "refsource": "OSVDB", "url": "http://www.osvdb.org/27294"}, {"name": "27273", "refsource": "OSVDB", "url": "http://www.osvdb.org/27273"}, {"name": "27287", "refsource": "OSVDB", "url": "http://www.osvdb.org/27287"}, {"name": "27274", "refsource": "OSVDB", "url": "http://www.osvdb.org/27274"}, {"name": "27284", "refsource": "OSVDB", "url": "http://www.osvdb.org/27284"}, {"name": "27253", "refsource": "OSVDB", "url": "http://www.osvdb.org/27253"}, {"name": "27276", "refsource": "OSVDB", "url": "http://www.osvdb.org/27276"}, {"name": "27306", "refsource": "OSVDB", "url": "http://www.osvdb.org/27306"}, {"name": "27263", "refsource": "OSVDB", "url": "http://www.osvdb.org/27263"}, {"name": "27298", "refsource": "OSVDB", "url": "http://www.osvdb.org/27298"}, {"name": "27295", "refsource": "OSVDB", "url": "http://www.osvdb.org/27295"}, {"name": "27271", "refsource": "OSVDB", "url": "http://www.osvdb.org/27271"}, {"name": "27288", "refsource": "OSVDB", "url": "http://www.osvdb.org/27288"}, {"name": "27310", "refsource": "OSVDB", "url": "http://www.osvdb.org/27310"}, {"name": "27264", "refsource": "OSVDB", "url": "http://www.osvdb.org/27264"}, {"name": "27262", "refsource": "OSVDB", "url": "http://www.osvdb.org/27262"}, {"name": "27257", "refsource": "OSVDB", "url": "http://www.osvdb.org/27257"}, {"name": "27259", "refsource": "OSVDB", "url": "http://www.osvdb.org/27259"}, {"name": "27280", "refsource": "OSVDB", "url": "http://www.osvdb.org/27280"}, {"name": "20299", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/20299"}, {"name": "27309", "refsource": "OSVDB", "url": "http://www.osvdb.org/27309"}, {"name": "27291", "refsource": "OSVDB", "url": "http://www.osvdb.org/27291"}, {"name": "27267", "refsource": "OSVDB", "url": "http://www.osvdb.org/27267"}, {"name": "27281", "refsource": "OSVDB", "url": "http://www.osvdb.org/27281"}, {"name": "27282", "refsource": "OSVDB", "url": "http://www.osvdb.org/27282"}, {"name": "27301", "refsource": "OSVDB", "url": "http://www.osvdb.org/27301"}, {"name": "27254", "refsource": "OSVDB", "url": "http://www.osvdb.org/27254"}, {"name": "27268", "refsource": "OSVDB", "url": "http://www.osvdb.org/27268"}, {"name": "27258", "refsource": "OSVDB", "url": "http://www.osvdb.org/27258"}, {"name": "27299", "refsource": "OSVDB", "url": "http://www.osvdb.org/27299"}, {"name": "27300", "refsource": "OSVDB", "url": "http://www.osvdb.org/27300"}, {"name": "27297", "refsource": "OSVDB", "url": "http://www.osvdb.org/27297"}, {"name": "27285", "refsource": "OSVDB", "url": "http://www.osvdb.org/27285"}, {"name": "27286", "refsource": "OSVDB", "url": "http://www.osvdb.org/27286"}, {"name": "27296", "refsource": "OSVDB", "url": "http://www.osvdb.org/27296"}, {"name": "27303", "refsource": "OSVDB", "url": "http://www.osvdb.org/27303"}, {"name": "27279", "refsource": "OSVDB", "url": "http://www.osvdb.org/27279"}, {"name": "27277", "refsource": "OSVDB", "url": "http://www.osvdb.org/27277"}, {"name": "19133", "refsource": "BID", "url": "http://www.securityfocus.com/bid/19133"}, {"name": "27283", "refsource": "OSVDB", "url": "http://www.osvdb.org/27283"}, {"name": "27261", "refsource": "OSVDB", "url": "http://www.osvdb.org/27261"}, {"name": "27302", "refsource": "OSVDB", "url": "http://www.osvdb.org/27302"}, {"name": "27260", "refsource": "OSVDB", "url": "http://www.osvdb.org/27260"}, {"name": "27266", "refsource": "OSVDB", "url": "http://www.osvdb.org/27266"}, {"name": "27290", "refsource": "OSVDB", "url": "http://www.osvdb.org/27290"}, {"name": "27293", "refsource": "OSVDB", "url": "http://www.osvdb.org/27293"}, {"name": "27265", "refsource": "OSVDB", "url": "http://www.osvdb.org/27265"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T17:58:51.912Z"}, "title": "CVE Program Container", "references": [{"name": "27308", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27308"}, {"name": "27289", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27289"}, {"name": "27304", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27304"}, {"name": "27269", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27269"}, {"name": "27256", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27256"}, {"name": "1829", "tags": ["exploit", "x_refsource_EXPLOIT-DB", "x_transferred"], "url": "https://www.exploit-db.com/exploits/1829"}, {"name": "27275", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27275"}, {"name": "27270", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27270"}, {"name": "27292", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27292"}, {"name": "actionapps-globals-file-include(26776)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/26776"}, {"name": "ADV-2006-1997", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2006/1997"}, {"name": "27305", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27305"}, {"name": "27272", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27272"}, {"name": "27278", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27278"}, {"name": "27294", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27294"}, {"name": "27273", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27273"}, {"name": "27287", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27287"}, {"name": "27274", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27274"}, {"name": "27284", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27284"}, {"name": "27253", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27253"}, {"name": "27276", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27276"}, {"name": "27306", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27306"}, {"name": "27263", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27263"}, {"name": "27298", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27298"}, {"name": "27295", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27295"}, {"name": "27271", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27271"}, {"name": "27288", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27288"}, {"name": "27310", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27310"}, {"name": "27264", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27264"}, {"name": "27262", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27262"}, {"name": "27257", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27257"}, {"name": "27259", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27259"}, {"name": "27280", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27280"}, {"name": "20299", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/20299"}, {"name": "27309", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27309"}, {"name": "27291", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27291"}, {"name": "27267", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27267"}, {"name": "27281", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27281"}, {"name": "27282", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27282"}, {"name": "27301", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27301"}, {"name": "27254", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27254"}, {"name": "27268", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27268"}, {"name": "27258", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27258"}, {"name": "27299", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27299"}, {"name": "27300", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27300"}, {"name": "27297", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27297"}, {"name": "27285", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27285"}, {"name": "27286", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27286"}, {"name": "27296", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27296"}, {"name": "27303", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27303"}, {"name": "27279", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27279"}, {"name": "27277", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27277"}, {"name": "19133", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/19133"}, {"name": "27283", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27283"}, {"name": "27261", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27261"}, {"name": "27302", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27302"}, {"name": "27260", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27260"}, {"name": "27266", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27266"}, {"name": "27290", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27290"}, {"name": "27293", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27293"}, {"name": "27265", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27265"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-2686", "datePublished": "2006-05-31T10:00:00", "dateReserved": "2006-05-30T00:00:00", "dateUpdated": "2024-08-07T17:58:51.912Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:actionapps:actionapps:2.8.1:*:*:*:*:*:*:*", "matchCriteriaId": "1FCB3A08-0445-4D10-B405-8CE1E54C352D", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "PHP remote file inclusion vulnerabilities in ActionApps 2.8.1 allow remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[AA_INC_PATH] parameter in (1) cached.php3, (2) cron.php3, (3) discussion.php3, (4) filldisc.php3, (5) filler.php3, (6) fillform.php3, (7) go.php3, (8) hiercons.php3, (9) jsview.php3, (10) live_checkbox.php3, (11) offline.php3, (12) post2shtml.php3, (13) search.php3, (14) slice.php3, (15) sql_update.php3, (16) view.php3, (17) multiple files in the (18) admin/ folder, (19) includes folder, and (20) modules/ folder."}], "id": "CVE-2006-2686", "lastModified": "2017-10-19T01:29:09.190", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 6.4, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 4.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2006-05-31T10:06:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Exploit", "Vendor Advisory"], "url": "http://secunia.com/advisories/20299"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27253"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27254"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27256"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27257"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27258"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27259"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27260"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27261"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27262"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27263"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27264"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27265"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27266"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27267"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27268"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27269"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27270"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27271"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27272"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27273"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27274"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27275"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27276"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27277"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27278"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27279"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27280"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27281"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27282"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27283"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27284"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27285"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27286"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27287"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27288"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27289"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27290"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27291"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27292"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27293"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27294"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27295"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27296"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27297"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27298"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27299"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27300"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27301"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27302"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27303"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27304"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27305"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27306"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27308"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27309"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27310"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/19133"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2006/1997"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/26776"}, {"source": "cve@mitre.org", "url": "https://www.exploit-db.com/exploits/1829"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-94"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}