CVE-2006-6512

2006-12-14T01:28:00
ID CVE-2006-6512
Type cve
Reporter cve@mitre.org
Modified 2018-10-17T21:49:00

Description

Directory traversal vulnerability in the Browse function (/browse URI) in Winamp Web Interface (Wawi) 7.5.13 and earlier allows remote authenticated users to list arbitrary directories via URL encoded backslashes ("%2F") in the path parameter. The attacker needs the "Browse" privilege to exploit this bug.