CVE-2006-5250

PHP remote file inclusion vulnerability in lib/googlesearch/GoogleSearch.php in BlueShoes 4.6_public and earlier allows remote attackers to execute arbitrary PHP code via a URL in the APP[path][lib] parameter, a different vector than CVE-2006-2864.

Score5.1
Access VectorNETWORK
Access ComplexityHIGH
AuthenticationNONE
Confidentiality ImpactPARTIAL
Integrity ImpactPARTIAL
Availability ImpactPARTIAL
Published2006-10-11 08:07:00.000-04
Last Modified2018-10-17 05:41:55.000-04

Vulnerable Software List

VendorProductVersions
Blueshoes Blueshoes Framework 4.6 public

References

SourceLink
SREASON1713
MISChttp://www.blueshoes.org/en/news/
BUGTRAQ20061010 blueshoes <= 4.6_public Remote File Inclusion
BID20450
XFblueshoes-google-file-include(29429)