CVE-2006-7086

2007-02-2800:00:00

mitre

www.cve.org

6.1 Medium

AI Score

Confidence

Low

0.018 Low

EPSS

Percentile

88.3%

JSON

The (1) dlback.php and (2) dlback.cgi scripts in Hot Links allow remote attackers to obtain sensitive information and download the database via a direct request with a modified dl parameter.

References

marc.info/?l=bugtraq&m=116370290529916&w=2

marc.info/?l=bugtraq&m=116373064308228&w=2

secunia.com/advisories/22970

www.securityfocus.com/bid/21112

www.vupen.com/english/advisories/2006/4585

exchange.xforce.ibmcloud.com/vulnerabilities/30340