CVE-2006-0147
First published: Mon Jan 09 2006(Updated: )
Dynamic code evaluation vulnerability in tests/tmssql.php test script in ADOdb for PHP before 4.70, as used in multiple products including (1) Mantis, (2) PostNuke, (3) Moodle, (4) Cacti, (5) Xaraya, (6) PhpOpenChat, possibly (7) MAXdev MD-Pro, and (8) Simplog, allows remote attackers to execute arbitrary PHP functions via the do parameter, which is saved in a variable that is then executed as a function, as demonstrated using phpinfo.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Postnuke Software Foundation Postnuke | =0.761 | |
| John Lim ADOdb | =4.66 | |
| The Cacti Group Cacti | =0.8.6g | |
| Mantis Mantis | =1.0.0_rc4 | |
| John Lim ADOdb | =4.68 | |
| Moodle Moodle | =1.5.3 | |
| Mantis Mantis | =0.19.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://secunia.com/secunia_research/2005-64/advisory/
- http://secunia.com/advisories/17418
- http://secunia.com/advisories/18254
- http://secunia.com/advisories/18267
- http://secunia.com/advisories/18260
- http://secunia.com/advisories/18276
- http://secunia.com/advisories/18233
- http://www.debian.org/security/2006/dsa-1029
- http://www.debian.org/security/2006/dsa-1030
- http://www.debian.org/security/2006/dsa-1031
- http://secunia.com/advisories/19555
- http://secunia.com/advisories/19590
- http://secunia.com/advisories/19591
- http://retrogod.altervista.org/phpopenchat_30x_sql_xpl.html
- http://retrogod.altervista.org/simplog_092_incl_xpl.html
- http://secunia.com/advisories/19600
- http://secunia.com/advisories/19628
- http://www.gentoo.org/security/en/glsa/glsa-200604-07.xml
- http://secunia.com/advisories/19691
- http://www.vupen.com/english/advisories/2006/1305
- http://www.vupen.com/english/advisories/2006/0104
- http://www.vupen.com/english/advisories/2006/0102
- http://www.vupen.com/english/advisories/2006/1332
- http://www.vupen.com/english/advisories/2006/0101
- http://www.vupen.com/english/advisories/2006/0103
- http://www.osvdb.org/22291
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24052
- https://www.exploit-db.com/exploits/1663
- http://www.securityfocus.com/archive/1/430743/100/0/threaded
- http://www.securityfocus.com/archive/1/430448/100/0/threaded
- collector/nvd-historical
- collector/nvd-index
- agent/weakness
- agent/severity
- agent/references
- agent/author
- agent/type
- agent/description
- agent/event
- agent/remedy
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/postnuke software foundation
- canonical/postnuke software foundation postnuke
- version/postnuke software foundation postnuke/0.761
- vendor/john lim
- canonical/john lim adodb
- version/john lim adodb/4.66
- vendor/the cacti group
- canonical/the cacti group cacti
- version/the cacti group cacti/0.8.6g
- vendor/mantis
- canonical/mantis mantis
- version/mantis mantis/1.0.0_rc4
- version/john lim adodb/4.68
- vendor/moodle
- canonical/moodle moodle
- version/moodle moodle/1.5.3
- version/mantis mantis/0.19.4