Vulnerability Description
PHP remote file inclusion vulnerability in ldap.php in Brian Drawert Yet Another PHP LDAP Admin Project (yaplap) 0.6 and 0.6.1 allows remote attackers to execute arbitrary PHP code via a URL in the LOGIN_style parameter.
CVSS Score
7.5
HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Brian Drawert | Yaplap | 0.6 |
References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30887
- https://www.exploit-db.com/exploits/2930
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30887
- https://www.exploit-db.com/exploits/2930
FAQ
What is CVE-2006-6575?
CVE-2006-6575 is a vulnerability with a CVSS score of 7.5 (HIGH). PHP remote file inclusion vulnerability in ldap.php in Brian Drawert Yet Another PHP LDAP Admin Project (yaplap) 0.6 and 0.6.1 allows remote attackers to execute arbitrary PHP code via a URL in the LO...
How severe is CVE-2006-6575?
CVE-2006-6575 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-6575?
Check the references section above for vendor advisories and patch information. Affected products include: Brian Drawert Yaplap.