CVE-2006-3554

Directory traversal vulnerability in index.php in MKPortal 1.0.1 Final allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the language cookie, as demonstrated by using a gl_session cookie to inject PHP sequences into the error.log file, which is then included by index.php with malicious commands accessible by the ind parameter.

Published: Jul 13, 2006
Updated: Apr 13, 2023
CVE: CVE-2006-3554
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
mkportal / mkportal	1.0.1_final	1.0.1_final.x

http://secunia.com/advisories/20884
http://securityreason.com/securityalert/1234
http://securitytracker.com/id?1016403
http://www.securityfocus.com/archive/1/438614/100/100/threaded
http://www.securityfocus.com/bid/18707
http://www.vupen.com/english/advisories/2006/2598
http://www.worlddefacers.de/Public/WD-MKP.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/27451

Vulnerability Database

290,206

CVE-2006-3554