CVE-2006-6852
N/A
N/A
Summary
Eval injection vulnerability in tDiary 2.0.3 and 2.1.4.200 61127 allows remote authenticated users to execute arbitrary Ruby code via unspecified vectors, possibly related to incorrect input validation by (1) conf.rhtml and (2) i.conf.rhtml. NOTE: some of these details are obtained from third party information.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www.vupen.com/english/advisories/2006/5201
- http://jvn.jp/jp/JVN%2331185550/index.html
- http://secunia.com/advisories/23465
- http://www.securityfocus.com/bid/21811
- http://www.tdiary.org/20061210.html
References
- http://www.vupen.com/english/advisories/2006/5201
- http://jvn.jp/jp/JVN%2331185550/index.html
- http://secunia.com/advisories/23465
- http://www.securityfocus.com/bid/21811
- http://www.tdiary.org/20061210.html
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.