VYPR
Unrated severityNVD Advisory· Published May 12, 2006· Updated Jun 16, 2026

CVE-2006-2319

CVE-2006-2319

Description

Ideal Science Ideal BB 1.5.4a and earlier does not properly check file extensions before permitting an upload, which allows remote attackers to upload and execute an ASP script via a 0x00 character before the ".asp" portion of the filename.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

17
  • cpe:2.3:a:ideal_science:idealbb:1.5.0_beta1:*:*:*:*:*:*:*+ 15 more
    • cpe:2.3:a:ideal_science:idealbb:1.5.0_beta1:*:*:*:*:*:*:*
    • cpe:2.3:a:ideal_science:idealbb:1.5.0_beta2:*:*:*:*:*:*:*
    • cpe:2.3:a:ideal_science:idealbb:1.5.0_beta3:*:*:*:*:*:*:*
    • cpe:2.3:a:ideal_science:idealbb:1.5.0_beta4:*:*:*:*:*:*:*
    • cpe:2.3:a:ideal_science:idealbb:1.5.0_rc1:*:*:*:*:*:*:*
    • cpe:2.3:a:ideal_science:idealbb:1.5.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ideal_science:idealbb:1.5.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ideal_science:idealbb:1.5.2a:*:*:*:*:*:*:*
    • cpe:2.3:a:ideal_science:idealbb:1.5.2b:*:*:*:*:*:*:*
    • cpe:2.3:a:ideal_science:idealbb:1.5.2c:*:*:*:*:*:*:*
    • cpe:2.3:a:ideal_science:idealbb:1.5.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ideal_science:idealbb:1.5.3a:*:*:*:*:*:*:*
    • cpe:2.3:a:ideal_science:idealbb:1.5.3b:*:*:*:*:*:*:*
    • cpe:2.3:a:ideal_science:idealbb:1.5.3_beta1:*:*:*:*:*:*:*
    • cpe:2.3:a:ideal_science:idealbb:1.5.3_beta2:*:*:*:*:*:*:*
    • cpe:2.3:a:ideal_science:idealbb:1.5.4a:*:*:*:*:*:*:*
  • Range: <=1.5.4a

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.