Detections
Analytics

CVE-2006-0782

critical

Description

Unspecified vulnerability in weblog.pl in PerlBlog 1.09b and earlier allows remote attackers to create arbitrary files and possibly execute arbitrary code via unspecified attack vectors related to improper handling of (1) the reply parameter, possibly involving injection of (2) the name parameter and (3) the body parameter.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/24692

http://www.securityfocus.com/bid/16707

http://www.securityfocus.com/archive/1/426260/100/0/threaded

http://securityreason.com/securityalert/508

http://secunia.com/advisories/18924

http://evuln.com/vulns/81/summary.html

Details

Source: Mitre, NVD

Published: 2006-02-19

Updated: 2026-04-16

Risk Information

CVSS v2

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Severity: High

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.03709