Lucene search

[email protected]CVE-2006-2813

HistoryJun 05, 2006 - 5:02 p.m.

CVE-2006-2813

2006-06-0517:02:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2006-2813

directory traversal

easy-scart.cgi

ishopcart

remote attackers

nvd

7.4 High

AI Score

Confidence

Low

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

0.005 Low

EPSS

Percentile

77.1%

JSON

Directory traversal vulnerability in easy-scart.cgi in iShopCart allows remote attackers to read arbitrary files via a … (dot dot) in the query string.

CPENameOperatorVersion
ishopcart:ishopcartishopcarteq*

CPE	Name	Operator	Version
ishopcart:ishopcart	ishopcart	eq	*

References

secunia.com/advisories/20415

securityreason.com/securityalert/1031

www.securityfocus.com/archive/1/435597/100/0/threaded

www.securityfocus.com/bid/18223

www.vupen.com/english/advisories/2006/2108

exchange.xforce.ibmcloud.com/vulnerabilities/27015

7.4 High

AI Score

Confidence

Low

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

0.005 Low

EPSS

Percentile

77.1%

JSON

Related for CVE-2006-2813

prion1