CVE-2006-5045

Published: Sep 27, 2006Modified: Apr 23, 2026

6.8

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability: 8.6 / Impact: 6.4

Source: NVD

Description

Unspecified vulnerability in PollXT component (com_pollxt) 1.22.07 and earlier for Joomla! has unspecified impact and attack vectors, probably related to PHP remote file inclusion in the mosConfig_absolute_path to conf.pollxt.php.

Affected (1)

Products: Joomlaxt: Com Pollxt

Joomlaxt

1 product

Com Pollxt

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Joomlaxt Com Pollxt	Up to 1.22.07

Related CWEs

CWE-94

Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

References (12)

http://forum.joomla.org/index.php/topic%2C77975.0.html

Source: cve@mitre.org

http://forum.joomla.org/index.php/topic%2C79477.0.html

Source: cve@mitre.org

http://secunia.com/advisories/21068

Source: cve@mitre.org

ExploitVendor Advisory

http://www.securityfocus.com/bid/19037

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2006/2843

Source: cve@mitre.org

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/27779

Source: cve@mitre.org

http://forum.joomla.org/index.php/topic%2C77975.0.html