PHP Remote File Inclusion Vulnerabilities in Harpia CMS by Harpia
CVE-2006-7024

Currently unrated

Key Information:

Vendor

Harpia

Status
Harpia Cms
Vendor
CVE Published:
15 February 2007

What is CVE-2006-7024?

Harpia CMS versions 1.0.5 and earlier are susceptible to multiple PHP remote file inclusion vulnerabilities. These vulnerabilities can be exploited by remote attackers to execute arbitrary PHP code. Attackers can manipulate parameters like 'func_prog', 'header_prog', 'theme_root', 'mod_root', 'mod_dir', and 'php_ext' in various scripts such as preload.php, index.php, missing.php, email.php, and several others. Successful exploitation of these flaws can lead to serious security breaches, compromising the integrity of the web application.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/27308
vdb-entryx_refsource_XF
https://www.exploit-db.com/exploits/1943
exploitx_refsource_EXPLOIT-DB
http://www.securityfocus.com/bid/18614
vdb-entryx_refsource_BID

EPSS Score

5% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.