CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2006-7015

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1530%
EPSS Percentile41.30th
Published2007年2月15日
Last Modified2026年4月23日

Vulnerability Description

PHP remote file inclusion vulnerability in admin.jobline.php in Jobline 1.1.1 allows remote attackers to execute arbitrary code via a URL in the mosConfig_absolute_path parameter. NOTE: CVE disputes this issue because the script is protected against direct requests

Affected Platforms (CPE)

📦
Jobline

Jobline

= 1.1.1

References & Advisories

🔗 http://securityreason.com/securityalert/2254
🔗 http://www.attrition.org/pipermail/vim/2007-February/001325.html
🔗 http://www.securityfocus.com/archive/1/436990/30/4440/threaded
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/27125
🔗 http://securityreason.com/securityalert/2254
🔗 http://www.attrition.org/pipermail/vim/2007-February/001325.html
🔗 http://www.securityfocus.com/archive/1/436990/30/4440/threaded
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/27125

相關漏洞威脅

CVE-2009-25546.8

SQL injection vulnerability in the search method in jobline.class.php in Jobline (com_jobline) 1.1.2.2, 1.3.1, and possibly earlie...

CVE-2006-011910.0

Multiple unspecified vulnerabilities in IBM Lotus Notes and Domino Server before 6.5.5 have unknown impact and attack vectors, due...

CVE-2006-012810.0

Buffer overflow in the IMAP service of Rockliffe MailSite before 6.1.22.1 allows remote attackers to have an unknown impact via un...

CVE-2006-021810.0

Multiple unspecified vulnerabilities in MyBulletinBoard (MyBB) before 1.0.2 have unspecified impact and attack vectors, related to...