Lucene search

[email protected]CVE-2006-3194

HistoryJun 23, 2006 - 12:02 a.m.

CVE-2006-3194

2006-06-2300:02:00

[email protected]

web.nvd.nist.gov

cve

2006

3194

directory traversal

vulnerability

index.php

singapore 0.10.0

nvd

7.1 High

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.017 Low

EPSS

Percentile

87.8%

JSON

Directory traversal vulnerability in index.php in singapore 0.10.0 and earlier allows remote attackers to read arbitrary files via a … (dot dot) sequence and trailing null (%00) byte in the (1) gallery and (2) template parameter.

Affected configurations

NVD

Node

singaporesingaporeMatch0.9.1_beta

singaporesingaporeMatch0.9.2_beta

singaporesingaporeMatch0.9.3_beta

singaporesingaporeMatch0.9.4_beta

singaporesingaporeMatch0.9.5_beta

singaporesingaporeMatch0.9.6_beta

singaporesingaporeMatch0.9.7

singaporesingaporeMatch0.9.7_beta

singaporesingaporeMatch0.9.8_beta

singaporesingaporeMatch0.9.9a_beta

singaporesingaporeMatch0.9.9b_beta

singaporesingaporeMatch0.9.10

singaporesingaporeMatch0.9.10_beta

singaporesingaporeMatch0.9.11_beta

singaporesingaporeMatch0.9_beta

singaporesingaporeMatch0.9a_beta

singaporesingaporeMatch0.10.0

CPENameOperatorVersion
singapore:singaporesingaporeeq0.9.1_beta
singapore:singaporesingaporeeq0.9.2_beta
singapore:singaporesingaporeeq0.9.3_beta
singapore:singaporesingaporeeq0.9.4_beta
singapore:singaporesingaporeeq0.9.5_beta
singapore:singaporesingaporeeq0.9.6_beta
singapore:singaporesingaporeeq0.9.7
singapore:singaporesingaporeeq0.9.7_beta
singapore:singaporesingaporeeq0.9.8_beta
singapore:singaporesingaporeeq0.9.9a_beta

CPE	Name	Operator	Version
singapore:singapore	singapore	eq	0.9.1_beta
singapore:singapore	singapore	eq	0.9.2_beta
singapore:singapore	singapore	eq	0.9.3_beta
singapore:singapore	singapore	eq	0.9.4_beta
singapore:singapore	singapore	eq	0.9.5_beta
singapore:singapore	singapore	eq	0.9.6_beta
singapore:singapore	singapore	eq	0.9.7
singapore:singapore	singapore	eq	0.9.7_beta
singapore:singapore	singapore	eq	0.9.8_beta
singapore:singapore	singapore	eq	0.9.9a_beta

Rows per page:

1-10 of 171

References

secunia.com/advisories/20724

securityreason.com/securityalert/1135

www.securityfocus.com/archive/1/437716/100/0/threaded

www.securityfocus.com/bid/18518

www.vupen.com/english/advisories/2006/2457

exchange.xforce.ibmcloud.com/vulnerabilities/27325

7.1 High

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.017 Low

EPSS

Percentile

87.8%

JSON

Related for CVE-2006-3194

nvd1 cvelist1