{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-30T08:48:29.642","vulnerabilities":[{"cve":{"id":"CVE-2006-4311","sourceIdentifier":"cve@mitre.org","published":"2006-08-23T19:04:00.000","lastModified":"2026-06-16T22:28:49.997","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"PHP remote file inclusion vulnerability in Sonium Enterprise Adressbook 0.2 allows remote attackers to execute arbitrary PHP code via the folder parameter in multiple files in the plugins directory, as demonstrated by plugins/1_Adressbuch/delete.php."},{"lang":"es","value":"Vulnerabilidad de inclusión remota de archivo en Sonium Enterprise Adressbook 0.2 permite a un atacante remoto provocar ejecutar código PHP de su elección a través del parámeto folder en múltiples archivos en los directorios pulignsm como se demostró por plugins/1_Adressbuch/delete.php."}],"affected":[{"source":"cve@mitre.org","affectedData":[{"vendor":"n/a","product":"n/a","versions":[{"version":"n/a","status":"affected"}]}]}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":true,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:sonium:enterprise_adressbook:0.2:*:*:*:*:*:*:*","matchCriteriaId":"B0DC1E2C-DED9-440E-81A2-083D1CF66F25"}]}]}],"references":[{"url":"http://secunia.com/advisories/21553","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"http://www.bb-pcsecurity.de/Websecurity/342/org/Sonium_Enterprise_Adressbook_Version_0.2_%28folder%29_RFI.htm","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/archive/1/443701/100/0/threaded","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/19597","source":"cve@mitre.org"},{"url":"http://www.vupen.com/english/advisories/2006/3334","source":"cve@mitre.org"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/28464","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/21553","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://www.bb-pcsecurity.de/Websecurity/342/org/Sonium_Enterprise_Adressbook_Version_0.2_%28folder%29_RFI.htm","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/archive/1/443701/100/0/threaded","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/19597","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.vupen.com/english/advisories/2006/3334","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/28464","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}