Lucene search
HistoryMar 09, 2006 - 8:02 p.m.
CVE-2006-1119
cve-2006-1119
fantรกstico
cpanel
file operations
php
error message
security vulnerability
6.5 Medium
AI Score
Confidence
Low
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
0.001 Low
EPSS
Percentile
46.5%
fantastico in Cpanel does not properly handle when it has insufficient permissions to perform certain file operations, which allows remote authenticated users to obtain the full pathname, which is leaked in a PHP error message.
| CPE | Name | Operator | Version |
|---|---|---|---|
| netenberg:fantastico_de_luxe | netenberg fantastico de luxe | eq | * |
Related
cvelist
cvelist
CVE-2006-1119
2006-03-09 20:00:00
prion
prion
Design/Logic Flaw
2006-03-09 20:02:00
ubuntucve
ubuntucve
CVE-2006-1119
2006-03-09 00:00:00
6.5 Medium
AI Score
Confidence
Low
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
0.001 Low
EPSS
Percentile
46.5%
Related for CVE-2006-1119