CVE-2006-5249

PHP remote file inclusion vulnerability in tagmin/delTagUser.php in TagIt! Tagboard 2.1.B Build 2 (tagit2b) allows remote attackers to execute arbitrary PHP code via a URL in the configpath parameter.

Referenced by CVEs: CVE-2007-0900
Score7.5
Access VectorNETWORK
Access ComplexityLOW
AuthenticationNONE
Confidentiality ImpactPARTIAL
Integrity ImpactPARTIAL
Availability ImpactPARTIAL
Published2006-10-11 08:07:00.000-04
Last Modified2018-10-17 05:41:54.000-04

Vulnerable Software List

VendorProductVersions
Tagit Tagboard 2.1.b build 2

References

SourceLink
SREASON1714
SECTRACK1017045
VIM20061011 Source VERIFY of tagit2b delTagUser.php RFI
BUGTRAQ20061010 tagit2b -- Remote File Inclusion
BID20451
XFtagit-deltaguser-file-include(29430)