cvelistv5 - cve-2006-0147

CVE-2006-0147 (GCVE-0-2006-0147)

Vulnerability from cvelistv5

Published

2006-01-09 23:00

Modified

2024-08-07 16:25

Severity ?

EPSS score ?

21.17% (0.95269)

Summary

Dynamic code evaluation vulnerability in tests/tmssql.php test script in ADOdb for PHP before 4.70, as used in multiple products including (1) Mantis, (2) PostNuke, (3) Moodle, (4) Cacti, (5) Xaraya, (6) PhpOpenChat, possibly (7) MAXdev MD-Pro, and (8) Simplog, allows remote attackers to execute arbitrary PHP functions via the do parameter, which is saved in a variable that is then executed as a function, as demonstrated using phpinfo.

References

URL	Tags
cve@mitre.org	http://retrogod.altervista.org/phpopenchat_30x_sql_xpl.html	Exploit
cve@mitre.org	http://retrogod.altervista.org/simplog_092_incl_xpl.html	Exploit
cve@mitre.org	http://secunia.com/advisories/17418	Exploit, Patch, Vendor Advisory
cve@mitre.org	http://secunia.com/advisories/18233	Patch, Vendor Advisory
cve@mitre.org	http://secunia.com/advisories/18254	Patch, Vendor Advisory
cve@mitre.org	http://secunia.com/advisories/18260	Patch, Vendor Advisory
cve@mitre.org	http://secunia.com/advisories/18267	Vendor Advisory
cve@mitre.org	http://secunia.com/advisories/18276	Patch, Vendor Advisory
cve@mitre.org	http://secunia.com/advisories/19555	Patch, Vendor Advisory
cve@mitre.org	http://secunia.com/advisories/19590	Patch, Vendor Advisory
cve@mitre.org	http://secunia.com/advisories/19591	Patch, Vendor Advisory
cve@mitre.org	http://secunia.com/advisories/19600	Vendor Advisory
cve@mitre.org	http://secunia.com/advisories/19628	Patch, Vendor Advisory
cve@mitre.org	http://secunia.com/advisories/19691
cve@mitre.org	http://secunia.com/secunia_research/2005-64/advisory/	Exploit, Patch, Vendor Advisory
cve@mitre.org	http://www.debian.org/security/2006/dsa-1029	Patch, Vendor Advisory
cve@mitre.org	http://www.debian.org/security/2006/dsa-1030	Patch, Vendor Advisory
cve@mitre.org	http://www.debian.org/security/2006/dsa-1031
cve@mitre.org	http://www.gentoo.org/security/en/glsa/glsa-200604-07.xml	Patch, Vendor Advisory
cve@mitre.org	http://www.osvdb.org/22291
cve@mitre.org	http://www.securityfocus.com/archive/1/430448/100/0/threaded
cve@mitre.org	http://www.securityfocus.com/archive/1/430743/100/0/threaded
cve@mitre.org	http://www.vupen.com/english/advisories/2006/0101
cve@mitre.org	http://www.vupen.com/english/advisories/2006/0102
cve@mitre.org	http://www.vupen.com/english/advisories/2006/0103
cve@mitre.org	http://www.vupen.com/english/advisories/2006/0104
cve@mitre.org	http://www.vupen.com/english/advisories/2006/1305
cve@mitre.org	http://www.vupen.com/english/advisories/2006/1332
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/24052
cve@mitre.org	https://www.exploit-db.com/exploits/1663
af854a3a-2127-422b-91ae-364da2661108	http://retrogod.altervista.org/phpopenchat_30x_sql_xpl.html	Exploit
af854a3a-2127-422b-91ae-364da2661108	http://retrogod.altervista.org/simplog_092_incl_xpl.html	Exploit
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/17418	Exploit, Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/18233	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/18254	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/18260	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/18267	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/18276	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/19555	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/19590	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/19591	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/19600	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/19628	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/19691
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/secunia_research/2005-64/advisory/	Exploit, Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.debian.org/security/2006/dsa-1029	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.debian.org/security/2006/dsa-1030	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.debian.org/security/2006/dsa-1031
af854a3a-2127-422b-91ae-364da2661108	http://www.gentoo.org/security/en/glsa/glsa-200604-07.xml	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.osvdb.org/22291
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/430448/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/430743/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/0101
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/0102
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/0103
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/0104
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/1305
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/1332
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/24052
af854a3a-2127-422b-91ae-364da2661108	https://www.exploit-db.com/exploits/1663

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-07T16:25:33.633Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  name: "19590",
                  tags: [
                     "third-party-advisory",
                     "x_refsource_SECUNIA",
                     "x_transferred",
                  ],
                  url: "http://secunia.com/advisories/19590",
               },
               {
                  name: "18267",
                  tags: [
                     "third-party-advisory",
                     "x_refsource_SECUNIA",
                     "x_transferred",
                  ],
                  url: "http://secunia.com/advisories/18267",
               },
               {
                  name: "18254",
                  tags: [
                     "third-party-advisory",
                     "x_refsource_SECUNIA",
                     "x_transferred",
                  ],
                  url: "http://secunia.com/advisories/18254",
               },
               {
                  name: "19555",
                  tags: [
                     "third-party-advisory",
                     "x_refsource_SECUNIA",
                     "x_transferred",
                  ],
                  url: "http://secunia.com/advisories/19555",
               },
               {
                  name: "DSA-1029",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_DEBIAN",
                     "x_transferred",
                  ],
                  url: "http://www.debian.org/security/2006/dsa-1029",
               },
               {
                  name: "adodb-tmssql-command-execution(24052)",
                  tags: [
                     "vdb-entry",
                     "x_refsource_XF",
                     "x_transferred",
                  ],
                  url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/24052",
               },
               {
                  name: "19628",
                  tags: [
                     "third-party-advisory",
                     "x_refsource_SECUNIA",
                     "x_transferred",
                  ],
                  url: "http://secunia.com/advisories/19628",
               },
               {
                  name: "20060409 PhpOpenChat 3.0.x ADODB Server.php \"sql\" SQL injection",
                  tags: [
                     "mailing-list",
                     "x_refsource_BUGTRAQ",
                     "x_transferred",
                  ],
                  url: "http://www.securityfocus.com/archive/1/430448/100/0/threaded",
               },
               {
                  name: "DSA-1030",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_DEBIAN",
                     "x_transferred",
                  ],
                  url: "http://www.debian.org/security/2006/dsa-1030",
               },
               {
                  name: "ADV-2006-1305",
                  tags: [
                     "vdb-entry",
                     "x_refsource_VUPEN",
                     "x_transferred",
                  ],
                  url: "http://www.vupen.com/english/advisories/2006/1305",
               },
               {
                  name: "18276",
                  tags: [
                     "third-party-advisory",
                     "x_refsource_SECUNIA",
                     "x_transferred",
                  ],
                  url: "http://secunia.com/advisories/18276",
               },
               {
                  name: "19600",
                  tags: [
                     "third-party-advisory",
                     "x_refsource_SECUNIA",
                     "x_transferred",
                  ],
                  url: "http://secunia.com/advisories/19600",
               },
               {
                  name: "1663",
                  tags: [
                     "exploit",
                     "x_refsource_EXPLOIT-DB",
                     "x_transferred",
                  ],
                  url: "https://www.exploit-db.com/exploits/1663",
               },
               {
                  name: "ADV-2006-0103",
                  tags: [
                     "vdb-entry",
                     "x_refsource_VUPEN",
                     "x_transferred",
                  ],
                  url: "http://www.vupen.com/english/advisories/2006/0103",
               },
               {
                  tags: [
                     "x_refsource_MISC",
                     "x_transferred",
                  ],
                  url: "http://secunia.com/secunia_research/2005-64/advisory/",
               },
               {
                  name: "20060412 Simplog <=0.9.2 multiple vulnerabilities",
                  tags: [
                     "mailing-list",
                     "x_refsource_BUGTRAQ",
                     "x_transferred",
                  ],
                  url: "http://www.securityfocus.com/archive/1/430743/100/0/threaded",
               },
               {
                  name: "19591",
                  tags: [
                     "third-party-advisory",
                     "x_refsource_SECUNIA",
                     "x_transferred",
                  ],
                  url: "http://secunia.com/advisories/19591",
               },
               {
                  name: "17418",
                  tags: [
                     "third-party-advisory",
                     "x_refsource_SECUNIA",
                     "x_transferred",
                  ],
                  url: "http://secunia.com/advisories/17418",
               },
               {
                  name: "19691",
                  tags: [
                     "third-party-advisory",
                     "x_refsource_SECUNIA",
                     "x_transferred",
                  ],
                  url: "http://secunia.com/advisories/19691",
               },
               {
                  name: "ADV-2006-0102",
                  tags: [
                     "vdb-entry",
                     "x_refsource_VUPEN",
                     "x_transferred",
                  ],
                  url: "http://www.vupen.com/english/advisories/2006/0102",
               },
               {
                  name: "ADV-2006-0101",
                  tags: [
                     "vdb-entry",
                     "x_refsource_VUPEN",
                     "x_transferred",
                  ],
                  url: "http://www.vupen.com/english/advisories/2006/0101",
               },
               {
                  name: "18233",
                  tags: [
                     "third-party-advisory",
                     "x_refsource_SECUNIA",
                     "x_transferred",
                  ],
                  url: "http://secunia.com/advisories/18233",
               },
               {
                  tags: [
                     "x_refsource_MISC",
                     "x_transferred",
                  ],
                  url: "http://retrogod.altervista.org/simplog_092_incl_xpl.html",
               },
               {
                  name: "ADV-2006-1332",
                  tags: [
                     "vdb-entry",
                     "x_refsource_VUPEN",
                     "x_transferred",
                  ],
                  url: "http://www.vupen.com/english/advisories/2006/1332",
               },
               {
                  name: "22291",
                  tags: [
                     "vdb-entry",
                     "x_refsource_OSVDB",
                     "x_transferred",
                  ],
                  url: "http://www.osvdb.org/22291",
               },
               {
                  name: "DSA-1031",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_DEBIAN",
                     "x_transferred",
                  ],
                  url: "http://www.debian.org/security/2006/dsa-1031",
               },
               {
                  tags: [
                     "x_refsource_MISC",
                     "x_transferred",
                  ],
                  url: "http://retrogod.altervista.org/phpopenchat_30x_sql_xpl.html",
               },
               {
                  name: "ADV-2006-0104",
                  tags: [
                     "vdb-entry",
                     "x_refsource_VUPEN",
                     "x_transferred",
                  ],
                  url: "http://www.vupen.com/english/advisories/2006/0104",
               },
               {
                  name: "18260",
                  tags: [
                     "third-party-advisory",
                     "x_refsource_SECUNIA",
                     "x_transferred",
                  ],
                  url: "http://secunia.com/advisories/18260",
               },
               {
                  name: "GLSA-200604-07",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_GENTOO",
                     "x_transferred",
                  ],
                  url: "http://www.gentoo.org/security/en/glsa/glsa-200604-07.xml",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "n/a",
               vendor: "n/a",
               versions: [
                  {
                     status: "affected",
                     version: "n/a",
                  },
               ],
            },
         ],
         datePublic: "2006-01-09T00:00:00",
         descriptions: [
            {
               lang: "en",
               value: "Dynamic code evaluation vulnerability in tests/tmssql.php test script in ADOdb for PHP before 4.70, as used in multiple products including (1) Mantis, (2) PostNuke, (3) Moodle, (4) Cacti, (5) Xaraya, (6) PhpOpenChat, possibly (7) MAXdev MD-Pro, and (8) Simplog, allows remote attackers to execute arbitrary PHP functions via the do parameter, which is saved in a variable that is then executed as a function, as demonstrated using phpinfo.",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "n/a",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2018-10-19T14:57:01",
            orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            shortName: "mitre",
         },
         references: [
            {
               name: "19590",
               tags: [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
               ],
               url: "http://secunia.com/advisories/19590",
            },
            {
               name: "18267",
               tags: [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
               ],
               url: "http://secunia.com/advisories/18267",
            },
            {
               name: "18254",
               tags: [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
               ],
               url: "http://secunia.com/advisories/18254",
            },
            {
               name: "19555",
               tags: [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
               ],
               url: "http://secunia.com/advisories/19555",
            },
            {
               name: "DSA-1029",
               tags: [
                  "vendor-advisory",
                  "x_refsource_DEBIAN",
               ],
               url: "http://www.debian.org/security/2006/dsa-1029",
            },
            {
               name: "adodb-tmssql-command-execution(24052)",
               tags: [
                  "vdb-entry",
                  "x_refsource_XF",
               ],
               url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/24052",
            },
            {
               name: "19628",
               tags: [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
               ],
               url: "http://secunia.com/advisories/19628",
            },
            {
               name: "20060409 PhpOpenChat 3.0.x ADODB Server.php \"sql\" SQL injection",
               tags: [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
               ],
               url: "http://www.securityfocus.com/archive/1/430448/100/0/threaded",
            },
            {
               name: "DSA-1030",
               tags: [
                  "vendor-advisory",
                  "x_refsource_DEBIAN",
               ],
               url: "http://www.debian.org/security/2006/dsa-1030",
            },
            {
               name: "ADV-2006-1305",
               tags: [
                  "vdb-entry",
                  "x_refsource_VUPEN",
               ],
               url: "http://www.vupen.com/english/advisories/2006/1305",
            },
            {
               name: "18276",
               tags: [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
               ],
               url: "http://secunia.com/advisories/18276",
            },
            {
               name: "19600",
               tags: [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
               ],
               url: "http://secunia.com/advisories/19600",
            },
            {
               name: "1663",
               tags: [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
               ],
               url: "https://www.exploit-db.com/exploits/1663",
            },
            {
               name: "ADV-2006-0103",
               tags: [
                  "vdb-entry",
                  "x_refsource_VUPEN",
               ],
               url: "http://www.vupen.com/english/advisories/2006/0103",
            },
            {
               tags: [
                  "x_refsource_MISC",
               ],
               url: "http://secunia.com/secunia_research/2005-64/advisory/",
            },
            {
               name: "20060412 Simplog <=0.9.2 multiple vulnerabilities",
               tags: [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
               ],
               url: "http://www.securityfocus.com/archive/1/430743/100/0/threaded",
            },
            {
               name: "19591",
               tags: [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
               ],
               url: "http://secunia.com/advisories/19591",
            },
            {
               name: "17418",
               tags: [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
               ],
               url: "http://secunia.com/advisories/17418",
            },
            {
               name: "19691",
               tags: [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
               ],
               url: "http://secunia.com/advisories/19691",
            },
            {
               name: "ADV-2006-0102",
               tags: [
                  "vdb-entry",
                  "x_refsource_VUPEN",
               ],
               url: "http://www.vupen.com/english/advisories/2006/0102",
            },
            {
               name: "ADV-2006-0101",
               tags: [
                  "vdb-entry",
                  "x_refsource_VUPEN",
               ],
               url: "http://www.vupen.com/english/advisories/2006/0101",
            },
            {
               name: "18233",
               tags: [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
               ],
               url: "http://secunia.com/advisories/18233",
            },
            {
               tags: [
                  "x_refsource_MISC",
               ],
               url: "http://retrogod.altervista.org/simplog_092_incl_xpl.html",
            },
            {
               name: "ADV-2006-1332",
               tags: [
                  "vdb-entry",
                  "x_refsource_VUPEN",
               ],
               url: "http://www.vupen.com/english/advisories/2006/1332",
            },
            {
               name: "22291",
               tags: [
                  "vdb-entry",
                  "x_refsource_OSVDB",
               ],
               url: "http://www.osvdb.org/22291",
            },
            {
               name: "DSA-1031",
               tags: [
                  "vendor-advisory",
                  "x_refsource_DEBIAN",
               ],
               url: "http://www.debian.org/security/2006/dsa-1031",
            },
            {
               tags: [
                  "x_refsource_MISC",
               ],
               url: "http://retrogod.altervista.org/phpopenchat_30x_sql_xpl.html",
            },
            {
               name: "ADV-2006-0104",
               tags: [
                  "vdb-entry",
                  "x_refsource_VUPEN",
               ],
               url: "http://www.vupen.com/english/advisories/2006/0104",
            },
            {
               name: "18260",
               tags: [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
               ],
               url: "http://secunia.com/advisories/18260",
            },
            {
               name: "GLSA-200604-07",
               tags: [
                  "vendor-advisory",
                  "x_refsource_GENTOO",
               ],
               url: "http://www.gentoo.org/security/en/glsa/glsa-200604-07.xml",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "cve@mitre.org",
               ID: "CVE-2006-0147",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "n/a",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "n/a",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "n/a",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Dynamic code evaluation vulnerability in tests/tmssql.php test script in ADOdb for PHP before 4.70, as used in multiple products including (1) Mantis, (2) PostNuke, (3) Moodle, (4) Cacti, (5) Xaraya, (6) PhpOpenChat, possibly (7) MAXdev MD-Pro, and (8) Simplog, allows remote attackers to execute arbitrary PHP functions via the do parameter, which is saved in a variable that is then executed as a function, as demonstrated using phpinfo.",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "n/a",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "19590",
                     refsource: "SECUNIA",
                     url: "http://secunia.com/advisories/19590",
                  },
                  {
                     name: "18267",
                     refsource: "SECUNIA",
                     url: "http://secunia.com/advisories/18267",
                  },
                  {
                     name: "18254",
                     refsource: "SECUNIA",
                     url: "http://secunia.com/advisories/18254",
                  },
                  {
                     name: "19555",
                     refsource: "SECUNIA",
                     url: "http://secunia.com/advisories/19555",
                  },
                  {
                     name: "DSA-1029",
                     refsource: "DEBIAN",
                     url: "http://www.debian.org/security/2006/dsa-1029",
                  },
                  {
                     name: "adodb-tmssql-command-execution(24052)",
                     refsource: "XF",
                     url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/24052",
                  },
                  {
                     name: "19628",
                     refsource: "SECUNIA",
                     url: "http://secunia.com/advisories/19628",
                  },
                  {
                     name: "20060409 PhpOpenChat 3.0.x ADODB Server.php \"sql\" SQL injection",
                     refsource: "BUGTRAQ",
                     url: "http://www.securityfocus.com/archive/1/430448/100/0/threaded",
                  },
                  {
                     name: "DSA-1030",
                     refsource: "DEBIAN",
                     url: "http://www.debian.org/security/2006/dsa-1030",
                  },
                  {
                     name: "ADV-2006-1305",
                     refsource: "VUPEN",
                     url: "http://www.vupen.com/english/advisories/2006/1305",
                  },
                  {
                     name: "18276",
                     refsource: "SECUNIA",
                     url: "http://secunia.com/advisories/18276",
                  },
                  {
                     name: "19600",
                     refsource: "SECUNIA",
                     url: "http://secunia.com/advisories/19600",
                  },
                  {
                     name: "1663",
                     refsource: "EXPLOIT-DB",
                     url: "https://www.exploit-db.com/exploits/1663",
                  },
                  {
                     name: "ADV-2006-0103",
                     refsource: "VUPEN",
                     url: "http://www.vupen.com/english/advisories/2006/0103",
                  },
                  {
                     name: "http://secunia.com/secunia_research/2005-64/advisory/",
                     refsource: "MISC",
                     url: "http://secunia.com/secunia_research/2005-64/advisory/",
                  },
                  {
                     name: "20060412 Simplog <=0.9.2 multiple vulnerabilities",
                     refsource: "BUGTRAQ",
                     url: "http://www.securityfocus.com/archive/1/430743/100/0/threaded",
                  },
                  {
                     name: "19591",
                     refsource: "SECUNIA",
                     url: "http://secunia.com/advisories/19591",
                  },
                  {
                     name: "17418",
                     refsource: "SECUNIA",
                     url: "http://secunia.com/advisories/17418",
                  },
                  {
                     name: "19691",
                     refsource: "SECUNIA",
                     url: "http://secunia.com/advisories/19691",
                  },
                  {
                     name: "ADV-2006-0102",
                     refsource: "VUPEN",
                     url: "http://www.vupen.com/english/advisories/2006/0102",
                  },
                  {
                     name: "ADV-2006-0101",
                     refsource: "VUPEN",
                     url: "http://www.vupen.com/english/advisories/2006/0101",
                  },
                  {
                     name: "18233",
                     refsource: "SECUNIA",
                     url: "http://secunia.com/advisories/18233",
                  },
                  {
                     name: "http://retrogod.altervista.org/simplog_092_incl_xpl.html",
                     refsource: "MISC",
                     url: "http://retrogod.altervista.org/simplog_092_incl_xpl.html",
                  },
                  {
                     name: "ADV-2006-1332",
                     refsource: "VUPEN",
                     url: "http://www.vupen.com/english/advisories/2006/1332",
                  },
                  {
                     name: "22291",
                     refsource: "OSVDB",
                     url: "http://www.osvdb.org/22291",
                  },
                  {
                     name: "DSA-1031",
                     refsource: "DEBIAN",
                     url: "http://www.debian.org/security/2006/dsa-1031",
                  },
                  {
                     name: "http://retrogod.altervista.org/phpopenchat_30x_sql_xpl.html",
                     refsource: "MISC",
                     url: "http://retrogod.altervista.org/phpopenchat_30x_sql_xpl.html",
                  },
                  {
                     name: "ADV-2006-0104",
                     refsource: "VUPEN",
                     url: "http://www.vupen.com/english/advisories/2006/0104",
                  },
                  {
                     name: "18260",
                     refsource: "SECUNIA",
                     url: "http://secunia.com/advisories/18260",
                  },
                  {
                     name: "GLSA-200604-07",
                     refsource: "GENTOO",
                     url: "http://www.gentoo.org/security/en/glsa/glsa-200604-07.xml",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
      assignerShortName: "mitre",
      cveId: "CVE-2006-0147",
      datePublished: "2006-01-09T23:00:00",
      dateReserved: "2006-01-09T00:00:00",
      dateUpdated: "2024-08-07T16:25:33.633Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
   "vulnerability-lookup:meta": {
      fkie_nvd: {
         configurations: "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:john_lim:adodb:4.66:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9F76566C-7F49-4725-91E6-8E2416CB7F03\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:john_lim:adodb:4.68:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"02F0F5B5-86D2-48C4-872E-3F8C38AF563C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.19.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AE92E018-C25C-468D-9EF5-5665F0B42EA2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:1.0.0_rc4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B0C7EDA7-1BED-4152-BD3D-3A596482D9D6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:moodle:moodle:1.5.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"66BD9A00-DA61-4389-8731-B92585C2BE6C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postnuke_software_foundation:postnuke:0.761:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C55DA346-A7A0-466F-90D7-CC1E7C2E9EFD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:the_cacti_group:cacti:0.8.6g:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB14AEA6-00FC-4C8B-BA57-6CA7A5519493\"}]}]}]",
         descriptions: "[{\"lang\": \"en\", \"value\": \"Dynamic code evaluation vulnerability in tests/tmssql.php test script in ADOdb for PHP before 4.70, as used in multiple products including (1) Mantis, (2) PostNuke, (3) Moodle, (4) Cacti, (5) Xaraya, (6) PhpOpenChat, possibly (7) MAXdev MD-Pro, and (8) Simplog, allows remote attackers to execute arbitrary PHP functions via the do parameter, which is saved in a variable that is then executed as a function, as demonstrated using phpinfo.\"}]",
         id: "CVE-2006-0147",
         lastModified: "2024-11-21T00:05:45.497",
         metrics: "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:P/I:P/A:P\", \"baseScore\": 7.5, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 10.0, \"impactScore\": 6.4, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": true, \"userInteractionRequired\": false}]}",
         published: "2006-01-09T23:03:00.000",
         references: "[{\"url\": \"http://retrogod.altervista.org/phpopenchat_30x_sql_xpl.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Exploit\"]}, {\"url\": \"http://retrogod.altervista.org/simplog_092_incl_xpl.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Exploit\"]}, {\"url\": \"http://secunia.com/advisories/17418\", \"source\": \"cve@mitre.org\", \"tags\": [\"Exploit\", \"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/18233\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/18254\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/18260\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/18267\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/18276\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/19555\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/19590\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/19591\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/19600\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/19628\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/19691\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/secunia_research/2005-64/advisory/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Exploit\", \"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.debian.org/security/2006/dsa-1029\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.debian.org/security/2006/dsa-1030\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.debian.org/security/2006/dsa-1031\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.gentoo.org/security/en/glsa/glsa-200604-07.xml\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.osvdb.org/22291\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/archive/1/430448/100/0/threaded\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/archive/1/430743/100/0/threaded\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.vupen.com/english/advisories/2006/0101\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.vupen.com/english/advisories/2006/0102\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.vupen.com/english/advisories/2006/0103\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.vupen.com/english/advisories/2006/0104\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.vupen.com/english/advisories/2006/1305\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.vupen.com/english/advisories/2006/1332\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/24052\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://www.exploit-db.com/exploits/1663\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://retrogod.altervista.org/phpopenchat_30x_sql_xpl.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\"]}, {\"url\": \"http://retrogod.altervista.org/simplog_092_incl_xpl.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\"]}, {\"url\": \"http://secunia.com/advisories/17418\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\", \"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/18233\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/18254\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/18260\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/18267\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/18276\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/19555\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/19590\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/19591\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/19600\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/19628\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/19691\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/secunia_research/2005-64/advisory/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\", \"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.debian.org/security/2006/dsa-1029\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.debian.org/security/2006/dsa-1030\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.debian.org/security/2006/dsa-1031\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.gentoo.org/security/en/glsa/glsa-200604-07.xml\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.osvdb.org/22291\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/archive/1/430448/100/0/threaded\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/archive/1/430743/100/0/threaded\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.vupen.com/english/advisories/2006/0101\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.vupen.com/english/advisories/2006/0102\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.vupen.com/english/advisories/2006/0103\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.vupen.com/english/advisories/2006/0104\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.vupen.com/english/advisories/2006/1305\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.vupen.com/english/advisories/2006/1332\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/24052\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://www.exploit-db.com/exploits/1663\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
         sourceIdentifier: "cve@mitre.org",
         vulnStatus: "Modified",
         weaknesses: "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-Other\"}]}]",
      },
      nvd: "{\"cve\":{\"id\":\"CVE-2006-0147\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2006-01-09T23:03:00.000\",\"lastModified\":\"2025-04-03T01:03:51.193\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Dynamic code evaluation vulnerability in tests/tmssql.php test script in ADOdb for PHP before 4.70, as used in multiple products including (1) Mantis, (2) PostNuke, (3) Moodle, (4) Cacti, (5) Xaraya, (6) PhpOpenChat, possibly (7) MAXdev MD-Pro, and (8) Simplog, allows remote attackers to execute arbitrary PHP functions via the do parameter, which is saved in a variable that is then executed as a function, as demonstrated using phpinfo.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:P/A:P\",\"baseScore\":7.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":true,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:john_lim:adodb:4.66:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9F76566C-7F49-4725-91E6-8E2416CB7F03\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:john_lim:adodb:4.68:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"02F0F5B5-86D2-48C4-872E-3F8C38AF563C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.19.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AE92E018-C25C-468D-9EF5-5665F0B42EA2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:1.0.0_rc4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B0C7EDA7-1BED-4152-BD3D-3A596482D9D6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:moodle:moodle:1.5.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"66BD9A00-DA61-4389-8731-B92585C2BE6C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postnuke_software_foundation:postnuke:0.761:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C55DA346-A7A0-466F-90D7-CC1E7C2E9EFD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:the_cacti_group:cacti:0.8.6g:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB14AEA6-00FC-4C8B-BA57-6CA7A5519493\"}]}]}],\"references\":[{\"url\":\"http://retrogod.altervista.org/phpopenchat_30x_sql_xpl.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\"]},{\"url\":\"http://retrogod.altervista.org/simplog_092_incl_xpl.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\"]},{\"url\":\"http://secunia.com/advisories/17418\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/18233\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/18254\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/18260\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/18267\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/18276\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/19555\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/19590\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/19591\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/19600\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/19628\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/19691\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/secunia_research/2005-64/advisory/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.debian.org/security/2006/dsa-1029\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.debian.org/security/2006/dsa-1030\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.debian.org/security/2006/dsa-1031\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.gentoo.org/security/en/glsa/glsa-200604-07.xml\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.osvdb.org/22291\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/archive/1/430448/100/0/threaded\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/archive/1/430743/100/0/threaded\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2006/0101\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2006/0102\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2006/0103\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2006/0104\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2006/1305\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2006/1332\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/24052\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://www.exploit-db.com/exploits/1663\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://retrogod.altervista.org/phpopenchat_30x_sql_xpl.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\"]},{\"url\":\"http://retrogod.altervista.org/simplog_092_incl_xpl.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\"]},{\"url\":\"http://secunia.com/advisories/17418\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/18233\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/18254\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/18260\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/18267\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/18276\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/19555\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/19590\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/19591\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/19600\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/19628\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/19691\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/secunia_research/2005-64/advisory/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.debian.org/security/2006/dsa-1029\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.debian.org/security/2006/dsa-1030\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.debian.org/security/2006/dsa-1031\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.gentoo.org/security/en/glsa/glsa-200604-07.xml\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.osvdb.org/22291\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/430448/100/0/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/430743/100/0/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2006/0101\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2006/0102\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2006/0103\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2006/0104\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2006/1305\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2006/1332\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/24052\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.exploit-db.com/exploits/1663\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
   },
}

ghsa-8348-4394-v2hm

Vulnerability from github

Published

2022-05-01 06:37

Modified

2025-04-03 04:24

Details

Show details on source website

JSON

To clipboard

{
   affected: [],
   aliases: [
      "CVE-2006-0147",
   ],
   database_specific: {
      cwe_ids: [],
      github_reviewed: false,
      github_reviewed_at: null,
      nvd_published_at: "2006-01-09T23:03:00Z",
      severity: "HIGH",
   },
   details: "Dynamic code evaluation vulnerability in tests/tmssql.php test script in ADOdb for PHP before 4.70, as used in multiple products including (1) Mantis, (2) PostNuke, (3) Moodle, (4) Cacti, (5) Xaraya, (6) PhpOpenChat, possibly (7) MAXdev MD-Pro, and (8) Simplog, allows remote attackers to execute arbitrary PHP functions via the do parameter, which is saved in a variable that is then executed as a function, as demonstrated using phpinfo.",
   id: "GHSA-8348-4394-v2hm",
   modified: "2025-04-03T04:24:52Z",
   published: "2022-05-01T06:37:35Z",
   references: [
      {
         type: "ADVISORY",
         url: "https://nvd.nist.gov/vuln/detail/CVE-2006-0147",
      },
      {
         type: "WEB",
         url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/24052",
      },
      {
         type: "WEB",
         url: "https://www.exploit-db.com/exploits/1663",
      },
      {
         type: "WEB",
         url: "http://retrogod.altervista.org/phpopenchat_30x_sql_xpl.html",
      },
      {
         type: "WEB",
         url: "http://retrogod.altervista.org/simplog_092_incl_xpl.html",
      },
      {
         type: "WEB",
         url: "http://secunia.com/advisories/17418",
      },
      {
         type: "WEB",
         url: "http://secunia.com/advisories/18233",
      },
      {
         type: "WEB",
         url: "http://secunia.com/advisories/18254",
      },
      {
         type: "WEB",
         url: "http://secunia.com/advisories/18260",
      },
      {
         type: "WEB",
         url: "http://secunia.com/advisories/18267",
      },
      {
         type: "WEB",
         url: "http://secunia.com/advisories/18276",
      },
      {
         type: "WEB",
         url: "http://secunia.com/advisories/19555",
      },
      {
         type: "WEB",
         url: "http://secunia.com/advisories/19590",
      },
      {
         type: "WEB",
         url: "http://secunia.com/advisories/19591",
      },
      {
         type: "WEB",
         url: "http://secunia.com/advisories/19600",
      },
      {
         type: "WEB",
         url: "http://secunia.com/advisories/19628",
      },
      {
         type: "WEB",
         url: "http://secunia.com/advisories/19691",
      },
      {
         type: "WEB",
         url: "http://secunia.com/secunia_research/2005-64/advisory",
      },
      {
         type: "WEB",
         url: "http://www.debian.org/security/2006/dsa-1029",
      },
      {
         type: "WEB",
         url: "http://www.debian.org/security/2006/dsa-1030",
      },
      {
         type: "WEB",
         url: "http://www.debian.org/security/2006/dsa-1031",
      },
      {
         type: "WEB",
         url: "http://www.gentoo.org/security/en/glsa/glsa-200604-07.xml",
      },
      {
         type: "WEB",
         url: "http://www.osvdb.org/22291",
      },
      {
         type: "WEB",
         url: "http://www.securityfocus.com/archive/1/430448/100/0/threaded",
      },
      {
         type: "WEB",
         url: "http://www.securityfocus.com/archive/1/430743/100/0/threaded",
      },
      {
         type: "WEB",
         url: "http://www.vupen.com/english/advisories/2006/0101",
      },
      {
         type: "WEB",
         url: "http://www.vupen.com/english/advisories/2006/0102",
      },
      {
         type: "WEB",
         url: "http://www.vupen.com/english/advisories/2006/0103",
      },
      {
         type: "WEB",
         url: "http://www.vupen.com/english/advisories/2006/0104",
      },
      {
         type: "WEB",
         url: "http://www.vupen.com/english/advisories/2006/1305",
      },
      {
         type: "WEB",
         url: "http://www.vupen.com/english/advisories/2006/1332",
      },
   ],
   schema_version: "1.4.0",
   severity: [],
}

fkie_cve-2006-0147

Vulnerability from fkie_nvd

Published

2006-01-09 23:03

Modified

2025-04-03 01:03

Severity ?

Summary

References

URL	Tags
cve@mitre.org	http://retrogod.altervista.org/phpopenchat_30x_sql_xpl.html	Exploit
cve@mitre.org	http://retrogod.altervista.org/simplog_092_incl_xpl.html	Exploit
cve@mitre.org	http://secunia.com/advisories/17418	Exploit, Patch, Vendor Advisory
cve@mitre.org	http://secunia.com/advisories/18233	Patch, Vendor Advisory
cve@mitre.org	http://secunia.com/advisories/18254	Patch, Vendor Advisory
cve@mitre.org	http://secunia.com/advisories/18260	Patch, Vendor Advisory
cve@mitre.org	http://secunia.com/advisories/18267	Vendor Advisory
cve@mitre.org	http://secunia.com/advisories/18276	Patch, Vendor Advisory
cve@mitre.org	http://secunia.com/advisories/19555	Patch, Vendor Advisory
cve@mitre.org	http://secunia.com/advisories/19590	Patch, Vendor Advisory
cve@mitre.org	http://secunia.com/advisories/19591	Patch, Vendor Advisory
cve@mitre.org	http://secunia.com/advisories/19600	Vendor Advisory
cve@mitre.org	http://secunia.com/advisories/19628	Patch, Vendor Advisory
cve@mitre.org	http://secunia.com/advisories/19691
cve@mitre.org	http://secunia.com/secunia_research/2005-64/advisory/	Exploit, Patch, Vendor Advisory
cve@mitre.org	http://www.debian.org/security/2006/dsa-1029	Patch, Vendor Advisory
cve@mitre.org	http://www.debian.org/security/2006/dsa-1030	Patch, Vendor Advisory
cve@mitre.org	http://www.debian.org/security/2006/dsa-1031
cve@mitre.org	http://www.gentoo.org/security/en/glsa/glsa-200604-07.xml	Patch, Vendor Advisory
cve@mitre.org	http://www.osvdb.org/22291
cve@mitre.org	http://www.securityfocus.com/archive/1/430448/100/0/threaded
cve@mitre.org	http://www.securityfocus.com/archive/1/430743/100/0/threaded
cve@mitre.org	http://www.vupen.com/english/advisories/2006/0101
cve@mitre.org	http://www.vupen.com/english/advisories/2006/0102
cve@mitre.org	http://www.vupen.com/english/advisories/2006/0103
cve@mitre.org	http://www.vupen.com/english/advisories/2006/0104
cve@mitre.org	http://www.vupen.com/english/advisories/2006/1305
cve@mitre.org	http://www.vupen.com/english/advisories/2006/1332
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/24052
cve@mitre.org	https://www.exploit-db.com/exploits/1663
af854a3a-2127-422b-91ae-364da2661108	http://retrogod.altervista.org/phpopenchat_30x_sql_xpl.html	Exploit
af854a3a-2127-422b-91ae-364da2661108	http://retrogod.altervista.org/simplog_092_incl_xpl.html	Exploit
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/17418	Exploit, Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/18233	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/18254	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/18260	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/18267	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/18276	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/19555	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/19590	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/19591	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/19600	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/19628	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/19691
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/secunia_research/2005-64/advisory/	Exploit, Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.debian.org/security/2006/dsa-1029	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.debian.org/security/2006/dsa-1030	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.debian.org/security/2006/dsa-1031
af854a3a-2127-422b-91ae-364da2661108	http://www.gentoo.org/security/en/glsa/glsa-200604-07.xml	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.osvdb.org/22291
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/430448/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/430743/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/0101
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/0102
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/0103
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/0104
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/1305
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/1332
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/24052
af854a3a-2127-422b-91ae-364da2661108	https://www.exploit-db.com/exploits/1663

Impacted products

Vendor	Product	Version
john_lim	adodb	4.66
john_lim	adodb	4.68
mantis	mantis	0.19.4
mantis	mantis	1.0.0_rc4
moodle	moodle	1.5.3
postnuke_software_foundation	postnuke	0.761
the_cacti_group	cacti	0.8.6g

JSON

To clipboard

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:a:john_lim:adodb:4.66:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F76566C-7F49-4725-91E6-8E2416CB7F03",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:a:john_lim:adodb:4.68:*:*:*:*:*:*:*",
                     matchCriteriaId: "02F0F5B5-86D2-48C4-872E-3F8C38AF563C",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:a:mantis:mantis:0.19.4:*:*:*:*:*:*:*",
                     matchCriteriaId: "AE92E018-C25C-468D-9EF5-5665F0B42EA2",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:a:mantis:mantis:1.0.0_rc4:*:*:*:*:*:*:*",
                     matchCriteriaId: "B0C7EDA7-1BED-4152-BD3D-3A596482D9D6",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:a:moodle:moodle:1.5.3:*:*:*:*:*:*:*",
                     matchCriteriaId: "66BD9A00-DA61-4389-8731-B92585C2BE6C",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:a:postnuke_software_foundation:postnuke:0.761:*:*:*:*:*:*:*",
                     matchCriteriaId: "C55DA346-A7A0-466F-90D7-CC1E7C2E9EFD",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:a:the_cacti_group:cacti:0.8.6g:*:*:*:*:*:*:*",
                     matchCriteriaId: "DB14AEA6-00FC-4C8B-BA57-6CA7A5519493",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Dynamic code evaluation vulnerability in tests/tmssql.php test script in ADOdb for PHP before 4.70, as used in multiple products including (1) Mantis, (2) PostNuke, (3) Moodle, (4) Cacti, (5) Xaraya, (6) PhpOpenChat, possibly (7) MAXdev MD-Pro, and (8) Simplog, allows remote attackers to execute arbitrary PHP functions via the do parameter, which is saved in a variable that is then executed as a function, as demonstrated using phpinfo.",
      },
   ],
   id: "CVE-2006-0147",
   lastModified: "2025-04-03T01:03:51.193",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "NETWORK",
               authentication: "NONE",
               availabilityImpact: "PARTIAL",
               baseScore: 7.5,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "PARTIAL",
               vectorString: "AV:N/AC:L/Au:N/C:P/I:P/A:P",
               version: "2.0",
            },
            exploitabilityScore: 10,
            impactScore: 6.4,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: true,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
   },
   published: "2006-01-09T23:03:00.000",
   references: [
      {
         source: "cve@mitre.org",
         tags: [
            "Exploit",
         ],
         url: "http://retrogod.altervista.org/phpopenchat_30x_sql_xpl.html",
      },
      {
         source: "cve@mitre.org",
         tags: [
            "Exploit",
         ],
         url: "http://retrogod.altervista.org/simplog_092_incl_xpl.html",
      },
      {
         source: "cve@mitre.org",
         tags: [
            "Exploit",
            "Patch",
            "Vendor Advisory",
         ],
         url: "http://secunia.com/advisories/17418",
      },
      {
         source: "cve@mitre.org",
         tags: [
            "Patch",
            "Vendor Advisory",
         ],
         url: "http://secunia.com/advisories/18233",
      },
      {
         source: "cve@mitre.org",
         tags: [
            "Patch",
            "Vendor Advisory",
         ],
         url: "http://secunia.com/advisories/18254",
      },
      {
         source: "cve@mitre.org",
         tags: [
            "Patch",
            "Vendor Advisory",
         ],
         url: "http://secunia.com/advisories/18260",
      },
      {
         source: "cve@mitre.org",
         tags: [
            "Vendor Advisory",
         ],
         url: "http://secunia.com/advisories/18267",
      },
      {
         source: "cve@mitre.org",
         tags: [
            "Patch",
            "Vendor Advisory",
         ],
         url: "http://secunia.com/advisories/18276",
      },
      {
         source: "cve@mitre.org",
         tags: [
            "Patch",
            "Vendor Advisory",
         ],
         url: "http://secunia.com/advisories/19555",
      },
      {
         source: "cve@mitre.org",
         tags: [
            "Patch",
            "Vendor Advisory",
         ],
         url: "http://secunia.com/advisories/19590",
      },
      {
         source: "cve@mitre.org",
         tags: [
            "Patch",
            "Vendor Advisory",
         ],
         url: "http://secunia.com/advisories/19591",
      },
      {
         source: "cve@mitre.org",
         tags: [
            "Vendor Advisory",
         ],
         url: "http://secunia.com/advisories/19600",
      },
      {
         source: "cve@mitre.org",
         tags: [
            "Patch",
            "Vendor Advisory",
         ],
         url: "http://secunia.com/advisories/19628",
      },
      {
         source: "cve@mitre.org",
         url: "http://secunia.com/advisories/19691",
      },
      {
         source: "cve@mitre.org",
         tags: [
            "Exploit",
            "Patch",
            "Vendor Advisory",
         ],
         url: "http://secunia.com/secunia_research/2005-64/advisory/",
      },
      {
         source: "cve@mitre.org",
         tags: [
            "Patch",
            "Vendor Advisory",
         ],
         url: "http://www.debian.org/security/2006/dsa-1029",
      },
      {
         source: "cve@mitre.org",
         tags: [
            "Patch",
            "Vendor Advisory",
         ],
         url: "http://www.debian.org/security/2006/dsa-1030",
      },
      {
         source: "cve@mitre.org",
         url: "http://www.debian.org/security/2006/dsa-1031",
      },
      {
         source: "cve@mitre.org",
         tags: [
            "Patch",
            "Vendor Advisory",
         ],
         url: "http://www.gentoo.org/security/en/glsa/glsa-200604-07.xml",
      },
      {
         source: "cve@mitre.org",
         url: "http://www.osvdb.org/22291",
      },
      {
         source: "cve@mitre.org",
         url: "http://www.securityfocus.com/archive/1/430448/100/0/threaded",
      },
      {
         source: "cve@mitre.org",
         url: "http://www.securityfocus.com/archive/1/430743/100/0/threaded",
      },
      {
         source: "cve@mitre.org",
         url: "http://www.vupen.com/english/advisories/2006/0101",
      },
      {
         source: "cve@mitre.org",
         url: "http://www.vupen.com/english/advisories/2006/0102",
      },
      {
         source: "cve@mitre.org",
         url: "http://www.vupen.com/english/advisories/2006/0103",
      },
      {
         source: "cve@mitre.org",
         url: "http://www.vupen.com/english/advisories/2006/0104",
      },
      {
         source: "cve@mitre.org",
         url: "http://www.vupen.com/english/advisories/2006/1305",
      },
      {
         source: "cve@mitre.org",
         url: "http://www.vupen.com/english/advisories/2006/1332",
      },
      {
         source: "cve@mitre.org",
         url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/24052",
      },
      {
         source: "cve@mitre.org",
         url: "https://www.exploit-db.com/exploits/1663",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Exploit",
         ],
         url: "http://retrogod.altervista.org/phpopenchat_30x_sql_xpl.html",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Exploit",
         ],
         url: "http://retrogod.altervista.org/simplog_092_incl_xpl.html",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Exploit",
            "Patch",
            "Vendor Advisory",
         ],
         url: "http://secunia.com/advisories/17418",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Patch",
            "Vendor Advisory",
         ],
         url: "http://secunia.com/advisories/18233",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Patch",
            "Vendor Advisory",
         ],
         url: "http://secunia.com/advisories/18254",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Patch",
            "Vendor Advisory",
         ],
         url: "http://secunia.com/advisories/18260",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "http://secunia.com/advisories/18267",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Patch",
            "Vendor Advisory",
         ],
         url: "http://secunia.com/advisories/18276",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Patch",
            "Vendor Advisory",
         ],
         url: "http://secunia.com/advisories/19555",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Patch",
            "Vendor Advisory",
         ],
         url: "http://secunia.com/advisories/19590",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Patch",
            "Vendor Advisory",
         ],
         url: "http://secunia.com/advisories/19591",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "http://secunia.com/advisories/19600",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Patch",
            "Vendor Advisory",
         ],
         url: "http://secunia.com/advisories/19628",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "http://secunia.com/advisories/19691",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Exploit",
            "Patch",
            "Vendor Advisory",
         ],
         url: "http://secunia.com/secunia_research/2005-64/advisory/",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Patch",
            "Vendor Advisory",
         ],
         url: "http://www.debian.org/security/2006/dsa-1029",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Patch",
            "Vendor Advisory",
         ],
         url: "http://www.debian.org/security/2006/dsa-1030",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "http://www.debian.org/security/2006/dsa-1031",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Patch",
            "Vendor Advisory",
         ],
         url: "http://www.gentoo.org/security/en/glsa/glsa-200604-07.xml",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "http://www.osvdb.org/22291",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "http://www.securityfocus.com/archive/1/430448/100/0/threaded",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "http://www.securityfocus.com/archive/1/430743/100/0/threaded",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "http://www.vupen.com/english/advisories/2006/0101",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "http://www.vupen.com/english/advisories/2006/0102",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "http://www.vupen.com/english/advisories/2006/0103",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "http://www.vupen.com/english/advisories/2006/0104",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "http://www.vupen.com/english/advisories/2006/1305",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "http://www.vupen.com/english/advisories/2006/1332",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/24052",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "https://www.exploit-db.com/exploits/1663",
      },
   ],
   sourceIdentifier: "cve@mitre.org",
   vulnStatus: "Deferred",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "NVD-CWE-Other",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

gsd-2006-0147

Vulnerability from gsd

Modified

2023-12-13 01:19

Details

Aliases

CVE-2006-0147

Aliases

CVE-2006-0147

JSON

To clipboard

{
   GSD: {
      alias: "CVE-2006-0147",
      description: "Dynamic code evaluation vulnerability in tests/tmssql.php test script in ADOdb for PHP before 4.70, as used in multiple products including (1) Mantis, (2) PostNuke, (3) Moodle, (4) Cacti, (5) Xaraya, (6) PhpOpenChat, possibly (7) MAXdev MD-Pro, and (8) Simplog, allows remote attackers to execute arbitrary PHP functions via the do parameter, which is saved in a variable that is then executed as a function, as demonstrated using phpinfo.",
      id: "GSD-2006-0147",
      references: [
         "https://www.suse.com/security/cve/CVE-2006-0147.html",
         "https://www.debian.org/security/2006/dsa-1029",
         "https://www.debian.org/security/2006/dsa-1030",
         "https://www.debian.org/security/2006/dsa-1031",
      ],
   },
   gsd: {
      metadata: {
         exploitCode: "unknown",
         remediation: "unknown",
         reportConfidence: "confirmed",
         type: "vulnerability",
      },
      osvSchema: {
         aliases: [
            "CVE-2006-0147",
         ],
         details: "Dynamic code evaluation vulnerability in tests/tmssql.php test script in ADOdb for PHP before 4.70, as used in multiple products including (1) Mantis, (2) PostNuke, (3) Moodle, (4) Cacti, (5) Xaraya, (6) PhpOpenChat, possibly (7) MAXdev MD-Pro, and (8) Simplog, allows remote attackers to execute arbitrary PHP functions via the do parameter, which is saved in a variable that is then executed as a function, as demonstrated using phpinfo.",
         id: "GSD-2006-0147",
         modified: "2023-12-13T01:19:50.670804Z",
         schema_version: "1.4.0",
      },
   },
   namespaces: {
      "cve.org": {
         CVE_data_meta: {
            ASSIGNER: "cve@mitre.org",
            ID: "CVE-2006-0147",
            STATE: "PUBLIC",
         },
         affects: {
            vendor: {
               vendor_data: [
                  {
                     product: {
                        product_data: [
                           {
                              product_name: "n/a",
                              version: {
                                 version_data: [
                                    {
                                       version_value: "n/a",
                                    },
                                 ],
                              },
                           },
                        ],
                     },
                     vendor_name: "n/a",
                  },
               ],
            },
         },
         data_format: "MITRE",
         data_type: "CVE",
         data_version: "4.0",
         description: {
            description_data: [
               {
                  lang: "eng",
                  value: "Dynamic code evaluation vulnerability in tests/tmssql.php test script in ADOdb for PHP before 4.70, as used in multiple products including (1) Mantis, (2) PostNuke, (3) Moodle, (4) Cacti, (5) Xaraya, (6) PhpOpenChat, possibly (7) MAXdev MD-Pro, and (8) Simplog, allows remote attackers to execute arbitrary PHP functions via the do parameter, which is saved in a variable that is then executed as a function, as demonstrated using phpinfo.",
               },
            ],
         },
         problemtype: {
            problemtype_data: [
               {
                  description: [
                     {
                        lang: "eng",
                        value: "n/a",
                     },
                  ],
               },
            ],
         },
         references: {
            reference_data: [
               {
                  name: "19590",
                  refsource: "SECUNIA",
                  url: "http://secunia.com/advisories/19590",
               },
               {
                  name: "18267",
                  refsource: "SECUNIA",
                  url: "http://secunia.com/advisories/18267",
               },
               {
                  name: "18254",
                  refsource: "SECUNIA",
                  url: "http://secunia.com/advisories/18254",
               },
               {
                  name: "19555",
                  refsource: "SECUNIA",
                  url: "http://secunia.com/advisories/19555",
               },
               {
                  name: "DSA-1029",
                  refsource: "DEBIAN",
                  url: "http://www.debian.org/security/2006/dsa-1029",
               },
               {
                  name: "adodb-tmssql-command-execution(24052)",
                  refsource: "XF",
                  url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/24052",
               },
               {
                  name: "19628",
                  refsource: "SECUNIA",
                  url: "http://secunia.com/advisories/19628",
               },
               {
                  name: "20060409 PhpOpenChat 3.0.x ADODB Server.php \"sql\" SQL injection",
                  refsource: "BUGTRAQ",
                  url: "http://www.securityfocus.com/archive/1/430448/100/0/threaded",
               },
               {
                  name: "DSA-1030",
                  refsource: "DEBIAN",
                  url: "http://www.debian.org/security/2006/dsa-1030",
               },
               {
                  name: "ADV-2006-1305",
                  refsource: "VUPEN",
                  url: "http://www.vupen.com/english/advisories/2006/1305",
               },
               {
                  name: "18276",
                  refsource: "SECUNIA",
                  url: "http://secunia.com/advisories/18276",
               },
               {
                  name: "19600",
                  refsource: "SECUNIA",
                  url: "http://secunia.com/advisories/19600",
               },
               {
                  name: "1663",
                  refsource: "EXPLOIT-DB",
                  url: "https://www.exploit-db.com/exploits/1663",
               },
               {
                  name: "ADV-2006-0103",
                  refsource: "VUPEN",
                  url: "http://www.vupen.com/english/advisories/2006/0103",
               },
               {
                  name: "http://secunia.com/secunia_research/2005-64/advisory/",
                  refsource: "MISC",
                  url: "http://secunia.com/secunia_research/2005-64/advisory/",
               },
               {
                  name: "20060412 Simplog <=0.9.2 multiple vulnerabilities",
                  refsource: "BUGTRAQ",
                  url: "http://www.securityfocus.com/archive/1/430743/100/0/threaded",
               },
               {
                  name: "19591",
                  refsource: "SECUNIA",
                  url: "http://secunia.com/advisories/19591",
               },
               {
                  name: "17418",
                  refsource: "SECUNIA",
                  url: "http://secunia.com/advisories/17418",
               },
               {
                  name: "19691",
                  refsource: "SECUNIA",
                  url: "http://secunia.com/advisories/19691",
               },
               {
                  name: "ADV-2006-0102",
                  refsource: "VUPEN",
                  url: "http://www.vupen.com/english/advisories/2006/0102",
               },
               {
                  name: "ADV-2006-0101",
                  refsource: "VUPEN",
                  url: "http://www.vupen.com/english/advisories/2006/0101",
               },
               {
                  name: "18233",
                  refsource: "SECUNIA",
                  url: "http://secunia.com/advisories/18233",
               },
               {
                  name: "http://retrogod.altervista.org/simplog_092_incl_xpl.html",
                  refsource: "MISC",
                  url: "http://retrogod.altervista.org/simplog_092_incl_xpl.html",
               },
               {
                  name: "ADV-2006-1332",
                  refsource: "VUPEN",
                  url: "http://www.vupen.com/english/advisories/2006/1332",
               },
               {
                  name: "22291",
                  refsource: "OSVDB",
                  url: "http://www.osvdb.org/22291",
               },
               {
                  name: "DSA-1031",
                  refsource: "DEBIAN",
                  url: "http://www.debian.org/security/2006/dsa-1031",
               },
               {
                  name: "http://retrogod.altervista.org/phpopenchat_30x_sql_xpl.html",
                  refsource: "MISC",
                  url: "http://retrogod.altervista.org/phpopenchat_30x_sql_xpl.html",
               },
               {
                  name: "ADV-2006-0104",
                  refsource: "VUPEN",
                  url: "http://www.vupen.com/english/advisories/2006/0104",
               },
               {
                  name: "18260",
                  refsource: "SECUNIA",
                  url: "http://secunia.com/advisories/18260",
               },
               {
                  name: "GLSA-200604-07",
                  refsource: "GENTOO",
                  url: "http://www.gentoo.org/security/en/glsa/glsa-200604-07.xml",
               },
            ],
         },
      },
      "nvd.nist.gov": {
         configurations: {
            CVE_data_version: "4.0",
            nodes: [
               {
                  children: [],
                  cpe_match: [
                     {
                        cpe23Uri: "cpe:2.3:a:moodle:moodle:1.5.3:*:*:*:*:*:*:*",
                        cpe_name: [],
                        vulnerable: true,
                     },
                     {
                        cpe23Uri: "cpe:2.3:a:postnuke_software_foundation:postnuke:0.761:*:*:*:*:*:*:*",
                        cpe_name: [],
                        vulnerable: true,
                     },
                     {
                        cpe23Uri: "cpe:2.3:a:the_cacti_group:cacti:0.8.6g:*:*:*:*:*:*:*",
                        cpe_name: [],
                        vulnerable: true,
                     },
                     {
                        cpe23Uri: "cpe:2.3:a:mantis:mantis:0.19.4:*:*:*:*:*:*:*",
                        cpe_name: [],
                        vulnerable: true,
                     },
                     {
                        cpe23Uri: "cpe:2.3:a:mantis:mantis:1.0.0_rc4:*:*:*:*:*:*:*",
                        cpe_name: [],
                        vulnerable: true,
                     },
                     {
                        cpe23Uri: "cpe:2.3:a:john_lim:adodb:4.66:*:*:*:*:*:*:*",
                        cpe_name: [],
                        vulnerable: true,
                     },
                     {
                        cpe23Uri: "cpe:2.3:a:john_lim:adodb:4.68:*:*:*:*:*:*:*",
                        cpe_name: [],
                        vulnerable: true,
                     },
                  ],
                  operator: "OR",
               },
            ],
         },
         cve: {
            CVE_data_meta: {
               ASSIGNER: "cve@mitre.org",
               ID: "CVE-2006-0147",
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "en",
                     value: "Dynamic code evaluation vulnerability in tests/tmssql.php test script in ADOdb for PHP before 4.70, as used in multiple products including (1) Mantis, (2) PostNuke, (3) Moodle, (4) Cacti, (5) Xaraya, (6) PhpOpenChat, possibly (7) MAXdev MD-Pro, and (8) Simplog, allows remote attackers to execute arbitrary PHP functions via the do parameter, which is saved in a variable that is then executed as a function, as demonstrated using phpinfo.",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "en",
                           value: "NVD-CWE-Other",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "http://secunia.com/secunia_research/2005-64/advisory/",
                     refsource: "MISC",
                     tags: [
                        "Exploit",
                        "Patch",
                        "Vendor Advisory",
                     ],
                     url: "http://secunia.com/secunia_research/2005-64/advisory/",
                  },
                  {
                     name: "17418",
                     refsource: "SECUNIA",
                     tags: [
                        "Exploit",
                        "Patch",
                        "Vendor Advisory",
                     ],
                     url: "http://secunia.com/advisories/17418",
                  },
                  {
                     name: "18254",
                     refsource: "SECUNIA",
                     tags: [
                        "Patch",
                        "Vendor Advisory",
                     ],
                     url: "http://secunia.com/advisories/18254",
                  },
                  {
                     name: "18267",
                     refsource: "SECUNIA",
                     tags: [
                        "Vendor Advisory",
                     ],
                     url: "http://secunia.com/advisories/18267",
                  },
                  {
                     name: "18260",
                     refsource: "SECUNIA",
                     tags: [
                        "Patch",
                        "Vendor Advisory",
                     ],
                     url: "http://secunia.com/advisories/18260",
                  },
                  {
                     name: "18276",
                     refsource: "SECUNIA",
                     tags: [
                        "Patch",
                        "Vendor Advisory",
                     ],
                     url: "http://secunia.com/advisories/18276",
                  },
                  {
                     name: "18233",
                     refsource: "SECUNIA",
                     tags: [
                        "Patch",
                        "Vendor Advisory",
                     ],
                     url: "http://secunia.com/advisories/18233",
                  },
                  {
                     name: "DSA-1029",
                     refsource: "DEBIAN",
                     tags: [
                        "Patch",
                        "Vendor Advisory",
                     ],
                     url: "http://www.debian.org/security/2006/dsa-1029",
                  },
                  {
                     name: "DSA-1030",
                     refsource: "DEBIAN",
                     tags: [
                        "Patch",
                        "Vendor Advisory",
                     ],
                     url: "http://www.debian.org/security/2006/dsa-1030",
                  },
                  {
                     name: "DSA-1031",
                     refsource: "DEBIAN",
                     tags: [],
                     url: "http://www.debian.org/security/2006/dsa-1031",
                  },
                  {
                     name: "19555",
                     refsource: "SECUNIA",
                     tags: [
                        "Patch",
                        "Vendor Advisory",
                     ],
                     url: "http://secunia.com/advisories/19555",
                  },
                  {
                     name: "19590",
                     refsource: "SECUNIA",
                     tags: [
                        "Patch",
                        "Vendor Advisory",
                     ],
                     url: "http://secunia.com/advisories/19590",
                  },
                  {
                     name: "19591",
                     refsource: "SECUNIA",
                     tags: [
                        "Patch",
                        "Vendor Advisory",
                     ],
                     url: "http://secunia.com/advisories/19591",
                  },
                  {
                     name: "http://retrogod.altervista.org/phpopenchat_30x_sql_xpl.html",
                     refsource: "MISC",
                     tags: [
                        "Exploit",
                     ],
                     url: "http://retrogod.altervista.org/phpopenchat_30x_sql_xpl.html",
                  },
                  {
                     name: "http://retrogod.altervista.org/simplog_092_incl_xpl.html",
                     refsource: "MISC",
                     tags: [
                        "Exploit",
                     ],
                     url: "http://retrogod.altervista.org/simplog_092_incl_xpl.html",
                  },
                  {
                     name: "19600",
                     refsource: "SECUNIA",
                     tags: [
                        "Vendor Advisory",
                     ],
                     url: "http://secunia.com/advisories/19600",
                  },
                  {
                     name: "19628",
                     refsource: "SECUNIA",
                     tags: [
                        "Patch",
                        "Vendor Advisory",
                     ],
                     url: "http://secunia.com/advisories/19628",
                  },
                  {
                     name: "GLSA-200604-07",
                     refsource: "GENTOO",
                     tags: [
                        "Patch",
                        "Vendor Advisory",
                     ],
                     url: "http://www.gentoo.org/security/en/glsa/glsa-200604-07.xml",
                  },
                  {
                     name: "19691",
                     refsource: "SECUNIA",
                     tags: [],
                     url: "http://secunia.com/advisories/19691",
                  },
                  {
                     name: "ADV-2006-1305",
                     refsource: "VUPEN",
                     tags: [],
                     url: "http://www.vupen.com/english/advisories/2006/1305",
                  },
                  {
                     name: "ADV-2006-0104",
                     refsource: "VUPEN",
                     tags: [],
                     url: "http://www.vupen.com/english/advisories/2006/0104",
                  },
                  {
                     name: "ADV-2006-0102",
                     refsource: "VUPEN",
                     tags: [],
                     url: "http://www.vupen.com/english/advisories/2006/0102",
                  },
                  {
                     name: "ADV-2006-1332",
                     refsource: "VUPEN",
                     tags: [],
                     url: "http://www.vupen.com/english/advisories/2006/1332",
                  },
                  {
                     name: "ADV-2006-0101",
                     refsource: "VUPEN",
                     tags: [],
                     url: "http://www.vupen.com/english/advisories/2006/0101",
                  },
                  {
                     name: "ADV-2006-0103",
                     refsource: "VUPEN",
                     tags: [],
                     url: "http://www.vupen.com/english/advisories/2006/0103",
                  },
                  {
                     name: "22291",
                     refsource: "OSVDB",
                     tags: [],
                     url: "http://www.osvdb.org/22291",
                  },
                  {
                     name: "adodb-tmssql-command-execution(24052)",
                     refsource: "XF",
                     tags: [],
                     url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/24052",
                  },
                  {
                     name: "1663",
                     refsource: "EXPLOIT-DB",
                     tags: [],
                     url: "https://www.exploit-db.com/exploits/1663",
                  },
                  {
                     name: "20060412 Simplog <=0.9.2 multiple vulnerabilities",
                     refsource: "BUGTRAQ",
                     tags: [],
                     url: "http://www.securityfocus.com/archive/1/430743/100/0/threaded",
                  },
                  {
                     name: "20060409 PhpOpenChat 3.0.x ADODB Server.php \"sql\" SQL injection",
                     refsource: "BUGTRAQ",
                     tags: [],
                     url: "http://www.securityfocus.com/archive/1/430448/100/0/threaded",
                  },
               ],
            },
         },
         impact: {
            baseMetricV2: {
               cvssV2: {
                  accessComplexity: "LOW",
                  accessVector: "NETWORK",
                  authentication: "NONE",
                  availabilityImpact: "PARTIAL",
                  baseScore: 7.5,
                  confidentialityImpact: "PARTIAL",
                  integrityImpact: "PARTIAL",
                  vectorString: "AV:N/AC:L/Au:N/C:P/I:P/A:P",
                  version: "2.0",
               },
               exploitabilityScore: 10,
               impactScore: 6.4,
               obtainAllPrivilege: false,
               obtainOtherPrivilege: true,
               obtainUserPrivilege: false,
               severity: "HIGH",
               userInteractionRequired: false,
            },
         },
         lastModifiedDate: "2018-10-19T15:42Z",
         publishedDate: "2006-01-09T23:03Z",
      },
   },
}

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2006-0147 (GCVE-0-2006-0147)

Vulnerability from cvelistv5

ghsa-8348-4394-v2hm

Vulnerability from github

fkie_cve-2006-0147

Vulnerability from fkie_nvd

gsd-2006-0147

Vulnerability from gsd

Tags

Sightings

Nomenclature