CVE-2006-3136

Multiple PHP remote file inclusion vulnerabilities in Nucleus 3.23 allow remote attackers to execute arbitrary PHP code via a URL the DIR_LIBS parameter in (1) path/action.php, and to files in path/nucleus including (2) media.php, (3) /xmlrpc/server.php, and (4) /xmlrpc/api_metaweblog.inc.php. NOTE: this is a similar vulnerability to CVE-2006-2583. NOTE: this issue has been disputed by third parties, who state that the DIR_LIBS parameter is defined in an include file before being used

Published: Jun 23, 2006
Updated: Nov 8, 2023
CVE: CVE-2006-3136
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-94

Affected Software
References

Software	From	Fixed in
nucleus_group / nucleus_cms	3.0	3.0.x
nucleus_group / nucleus_cms	3.23	3.23.x
nucleus_group / nucleus_cms	3.0_rc	3.0_rc.x
nucleus_group / nucleus_cms	3.1	3.1.x
nucleus_group / nucleus_cms	3.21	3.21.x
nucleus_group / nucleus_cms	3.22	3.22.x
nucleus_group / nucleus_cms	3.0_1	3.0_1.x
nucleus_group / nucleus_cms	3.2	3.2.x

Vulnerability Database

CVE-2006-3136