Multiple directory traversal vulnerabilities in Loudblog before 0.42 allow remote attackers to read or include arbitrary files via a .. (dot dot) and trailing %00 (NULL) byte in the (1) template and (2) page parameters in (a) index.php, and the (3) language parameter in (b) inc/backend_settings.php.
References
Configurations
History
No history.
Information
Published : 2006-03-09 13:06
Updated : 2024-02-04 16:52
NVD link : CVE-2006-1114
Mitre link : CVE-2006-1114
CVE.ORG link : CVE-2006-1114
JSON object : View
Products Affected
gerrit_van_aaken
- loudblog
CWE