VYPR
High severityNVD Advisory· Published Feb 23, 2006· Updated Jun 16, 2026

CVE-2006-0868

CVE-2006-0868

Description

Multiple unspecified injection vulnerabilities in unspecified Auth Container back ends for PEAR::Auth before 1.2.4, and 1.3.x before 1.3.0r4, allow remote attackers to "falsify authentication credentials," related to the "underlying storage containers."

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
pear/authPackagist
< 1.2.41.2.4
pear/authPackagist
>= 1.3.0r1, < 1.3.0r41.3.0r4

Affected products

18
  • Pear/XML Rpc17 versions
    cpe:2.3:a:pear:xml_rpc:1.0.2:*:*:*:*:*:*:*+ 16 more
    • cpe:2.3:a:pear:xml_rpc:1.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:pear:xml_rpc:1.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:pear:xml_rpc:1.0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:pear:xml_rpc:1.1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:pear:xml_rpc:1.2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:pear:xml_rpc:1.2.0rc1:*:*:*:*:*:*:*
    • cpe:2.3:a:pear:xml_rpc:1.2.0rc2:*:*:*:*:*:*:*
    • cpe:2.3:a:pear:xml_rpc:1.2.0rc3:*:*:*:*:*:*:*
    • cpe:2.3:a:pear:xml_rpc:1.2.0rc4:*:*:*:*:*:*:*
    • cpe:2.3:a:pear:xml_rpc:1.2.0rc5:*:*:*:*:*:*:*
    • cpe:2.3:a:pear:xml_rpc:1.2.0rc6:*:*:*:*:*:*:*
    • cpe:2.3:a:pear:xml_rpc:1.2.0rc7:*:*:*:*:*:*:*
    • cpe:2.3:a:pear:xml_rpc:1.2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:pear:xml_rpc:1.2.2:*:*:*:*:*:*:*
    • cpe:2.3:a:pear:xml_rpc:1.3.0rc1:*:*:*:*:*:*:*
    • cpe:2.3:a:pear:xml_rpc:1.3.0rc2:*:*:*:*:*:*:*
    • cpe:2.3:a:pear:xml_rpc:1.3.0rc3:*:*:*:*:*:*:*
  • ghsa-coords
    Range: < 1.2.4

Patches

Vulnerability mechanics

References

15

News mentions

0

No linked articles in our index yet.