CVE-2006-2129
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
01/05/2006
Last modified:
20/07/2017
Description
Direct static code injection vulnerability in Pro Publish 2.0 allows remote authenticated administrators to execute arbitrary PHP code by editing certain settings, which are stored in set_inc.php.
Impact
Base Score 2.0
5.50
Severity 2.0
MEDIUM
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:a:deltascripts:pro_publish:2.0:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page