Vulnerability Details : CVE-2006-1956
Potential exploit
The com_rss option (rss.php) in (1) Mambo and (2) Joomla! allows remote attackers to obtain sensitive information via an invalid feed parameter, which reveals the path in an error message.
Products affected by CVE-2006-1956
- cpe:2.3:a:mambo:mambo:4.5.3h:h:*:*:*:*:*:*
- cpe:2.3:a:joomla:joomla:1.0.7:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2006-1956
0.01%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 1 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2006-1956
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:P/I:N/A:N |
10.0
|
2.9
|
NIST |
References for CVE-2006-1956
-
http://www.kapda.ir/advisory-313.html
Page Not Found - پروپوزال ســــرا
-
http://irannetjob.com/content/view/209/28/
irannetjob.com - irannetjob Resources and Information.Exploit;URL Repurposed
-
http://www.securityfocus.com/archive/1/431317/100/0/threaded
Jump to