Vulnerability in Jetbox Jetbox_cms

CVE-2006-4422

PHP remote file inclusion vulnerability in includes/phpdig/libs/search_function.php in Jetbox CMS 2.1 allows remote attackers to execute arbitrary PHP code via a URL in the relative_script_path parameter, a different vector than CVE-2006-2…

EPSS: 0.044 (90.1th percentile) — read the EPSS interpretation.

Affected products

Jetbox Jetbox_cms — versions 2.1
N/a — versions n/a

References

cve@mitre.org (mailing-list, x_refsource_BUGTRAQ)
cve@mitre.org (mailing-list, x_refsource_BUGTRAQ)
cve@mitre.org (vdb-entry, x_refsource_XF)
cve@mitre.org (mailing-list, x_refsource_VIM)
cve@mitre.org (vdb-entry, x_refsource_SECTRACK)
cve@mitre.org (Exploit, vdb-entry, x_refsource_BID)
cve@mitre.org (mailing-list, x_refsource_BUGTRAQ)
cve@mitre.org (mailing-list, x_refsource_BUGTRAQ)
cve@mitre.org (x_refsource_OSVDB, vdb-entry)
cve@mitre.org (mailing-list, x_refsource_VIM)