Directory traversal vulnerability in detail.php in SixCMS 6.0, and other versions before 6.0.6patch2, allows remote attackers to read arbitrary files via a .. (dot dot) sequence and trailing null (%00) byte in the template parameter.
References
Configurations
History
No history.
Information
Published : 2006-06-16 10:02
Updated : 2024-02-04 16:52
NVD link : CVE-2006-3050
Mitre link : CVE-2006-3050
CVE.ORG link : CVE-2006-3050
JSON object : View
Products Affected
six_offene_systeme_gmbh
- sixcms
CWE