Lucene search

K

MitreCVELIST:CVE-2006-1800

HistoryApr 18, 2006 - 10:00 a.m.

CVE-2006-1800

2006-04-1810:00:00

mitre

www.cve.org

2

AI Score

7.3

Confidence

Low

EPSS

0.039

Percentile

92.0%

Directory traversal vulnerability in posts.php in SimpleBBS 1.0.6 through 1.1 allows remote attackers to include and execute arbitrary files via “…” sequences in the language cookie, as demonstrated by by injecting the code into the gl_session cookie of users.php, which is stored in error.log.

References

downloads.securityfocus.com/vulnerabilities/exploits/SimpleBBS-RCE-posts.php.pl

www.securityfocus.com/archive/1/430872

www.securityfocus.com/bid/17501

www.worlddefacers.de/Public/WD-SMPL.txt

exchange.xforce.ibmcloud.com/vulnerabilities/25788

AI Score

7.3

Confidence

Low

EPSS

0.039

Percentile

92.0%

Related for CVELIST:CVE-2006-1800

cve1 nvd1 prion1 exploitdb1