VYPR
← All advisories
High severityNVD Advisory· Published Feb 23, 2006· Updated Apr 16, 2026

CVE-2006-0868

CVE-2006-0868

Description

Multiple unspecified injection vulnerabilities in unspecified Auth Container back ends for PEAR::Auth before 1.2.4, and 1.3.x before 1.3.0r4, allow remote attackers to "falsify authentication credentials," related to the "underlying storage containers."

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
pear/authPackagist
< 1.2.41.2.4
pear/authPackagist
>= 1.3.0r1, < 1.3.0r41.3.0r4

Affected products

17
  • Pear/XML Rpc17 versions
    cpe:2.3:a:pear:xml_rpc:1.0.2:*:*:*:*:*:*:*+ 16 more
    • cpe:2.3:a:pear:xml_rpc:1.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:pear:xml_rpc:1.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:pear:xml_rpc:1.0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:pear:xml_rpc:1.1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:pear:xml_rpc:1.2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:pear:xml_rpc:1.2.0rc1:*:*:*:*:*:*:*
    • cpe:2.3:a:pear:xml_rpc:1.2.0rc2:*:*:*:*:*:*:*
    • cpe:2.3:a:pear:xml_rpc:1.2.0rc3:*:*:*:*:*:*:*
    • cpe:2.3:a:pear:xml_rpc:1.2.0rc4:*:*:*:*:*:*:*
    • cpe:2.3:a:pear:xml_rpc:1.2.0rc5:*:*:*:*:*:*:*
    • cpe:2.3:a:pear:xml_rpc:1.2.0rc6:*:*:*:*:*:*:*
    • cpe:2.3:a:pear:xml_rpc:1.2.0rc7:*:*:*:*:*:*:*
    • cpe:2.3:a:pear:xml_rpc:1.2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:pear:xml_rpc:1.2.2:*:*:*:*:*:*:*
    • cpe:2.3:a:pear:xml_rpc:1.3.0rc1:*:*:*:*:*:*:*
    • cpe:2.3:a:pear:xml_rpc:1.3.0rc2:*:*:*:*:*:*:*
    • cpe:2.3:a:pear:xml_rpc:1.3.0rc3:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

15

News mentions

0

No linked articles in our index yet.