Azucar CMS '$_GET[_VIEW]' Parameter Multiple Remote File Include Vulnerabilities
|
Bugtraq ID:
|
21638
|
|
Class:
|
Input Validation Error
|
|
CVE:
|
CVE-2006-6720
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Dec 18 2006 12:00AM
|
|
Updated:
|
Feb 05 2008 08:46PM
|
|
Credit:
|
nuffsaid is credited with the discovery of the original issue. Alexandr Polyakov and Stas Svistunovich of the Digital Security Research Group have provided additional details.
|
|
Vulnerable:
|
Azucar CMS Azucar CMS 1.3
|
|
|
|
Not Vulnerable:
|
|
|
