Vulnerability Details : CVE-2006-4557
** DISPUTED ** PHP remote file inclusion vulnerability in plugins/plugins.php in Bob Jewell Discloser 0.0.4 allows remote attackers to execute arbitrary PHP code via a URL in the type parameter. NOTE: another researcher has stated that an attacker cannot control the type parameter. As of 20060901, CVE analysis concurs with the dispute.
Vulnerability category: File inclusion
Exploit prediction scoring system (EPSS) score for CVE-2006-4557
Probability of exploitation activity in the next 30 days: 1.10%
CVSS scores for CVE-2006-4557
|Base Score||Base Severity||CVSS Vector||Exploitability Score||Impact Score||Source|