CVE-2006-6783

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2006-6783
logahead UNU 1.0 before 20061226 allows remote attackers to upload arbitrary files via unspecified vectors related to plugins/widged/_widged.php (aka the WidgEd plugin), possibly because of an authentication bypass. NOTE: some of these details are obtained from third party information.

7.5 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References
Link Resource
http://logahead.com/forums/comments.php?DiscussionID=216
http://secunia.com/advisories/23470 Vendor Advisory
http://securityreason.com/securityalert/2071
http://securitytracker.com/id?1017444
http://www.securityfocus.com/archive/1/455307/100/0/threaded
http://www.securityfocus.com/bid/21743
http://www.vupen.com/english/advisories/2006/5184 Vendor Advisory
http://logahead.com/forums/comments.php?DiscussionID=216
http://secunia.com/advisories/23470 Vendor Advisory
http://securityreason.com/securityalert/2071
http://securitytracker.com/id?1017444
http://www.securityfocus.com/archive/1/455307/100/0/threaded
http://www.securityfocus.com/bid/21743
http://www.vupen.com/english/advisories/2006/5184 Vendor Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:logahead:logahead_unu:1.0:*:*:*:*:*:*:*
History

21 Nov 2024, 00:23

Type Values Removed Values Added
References () http://logahead.com/forums/comments.php?DiscussionID=216 - () http://logahead.com/forums/comments.php?DiscussionID=216 -
References () http://secunia.com/advisories/23470 - Vendor Advisory () http://secunia.com/advisories/23470 - Vendor Advisory
References () http://securityreason.com/securityalert/2071 - () http://securityreason.com/securityalert/2071 -
References () http://securitytracker.com/id?1017444 - () http://securitytracker.com/id?1017444 -
References () http://www.securityfocus.com/archive/1/455307/100/0/threaded - () http://www.securityfocus.com/archive/1/455307/100/0/threaded -
References () http://www.securityfocus.com/bid/21743 - () http://www.securityfocus.com/bid/21743 -
References () http://www.vupen.com/english/advisories/2006/5184 - Vendor Advisory () http://www.vupen.com/english/advisories/2006/5184 - Vendor Advisory
Information

Published : 2006-12-28 00:28

Updated : 2024-11-21 00:23

NVD link : CVE-2006-6783

Mitre link : CVE-2006-6783

CVE.ORG link : CVE-2006-6783

JSON object : View

Products Affected

logahead

  • logahead_unu
CWE
CWE-287

Improper Authentication


NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024