CVE-2006-1073

2006-03-0800:00:00

mitre

www.cve.org

6.8 Medium

AI Score

Confidence

Low

0.047 Low

EPSS

Percentile

92.7%

JSON

Directory traversal vulnerability in index.php in Daverave Simplog 1.0.2 and earlier allows remote attackers to include or read arbitrary .txt files via the (1) act and (2) blogid parameters.

References

notlegal.ws/simplogsploit.txt

secunia.com/advisories/19115

securityreason.com/securityalert/542

www.securityfocus.com/archive/1/426769/100/0/threaded

www.securityfocus.com/bid/16965

www.vupen.com/english/advisories/2006/0839

exchange.xforce.ibmcloud.com/vulnerabilities/25067