CVE-2006-2129

Published: May 1, 2006Modified: Apr 16, 2026

5.5

Vector

AV:N/AC:L/Au:S/C:P/I:P/A:N

Exploitability: 8.0 / Impact: 4.9

Source: NVD

Description

Direct static code injection vulnerability in Pro Publish 2.0 allows remote authenticated administrators to execute arbitrary PHP code by editing certain settings, which are stored in set_inc.php.

Affected (1)

Products: Deltascripts: Pro Publish

Deltascripts

1 product

Pro Publish

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Deltascripts Pro Publish	Version 2.0

References (12)

http://evuln.com/vulns/130/summary.html

Source: cve@mitre.org

http://secunia.com/advisories/19882

Source: cve@mitre.org

Vendor Advisory

http://www.osvdb.org/25128

Source: cve@mitre.org

http://www.securityfocus.com/bid/17762

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2006/1578

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/26149

Source: cve@mitre.org

http://evuln.com/vulns/130/summary.html