CVE-2006-2105

2006-04-2910:00:00

mitre

www.cve.org

jupiter cms

directory traversal

remote attack

AI Score

6.7

Confidence

Low

EPSS

0.002

Percentile

53.6%

JSON

Directory traversal vulnerability in index.php in Jupiter CMS 1.1.4 and 1.1.5 allows remote attackers to read arbitrary files via “…” sequences terminated by a %00 (null) character in the n parameter.

References

downloads.securityfocus.com/vulnerabilities/exploits/jupitercms-lteq1.1.5-local-file-include.txt

www.securityfocus.com/bid/17716