Lucene search

PRIOn knowledge basePRION:CVE-2006-1224

HistoryMar 14, 2006 - 11:02 a.m.

Directory traversal

2006-03-1411:02:00

PRIOn knowledge base

www.prio-n.com

7.2 High

AI Score

Confidence

Low

2.6 Low

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:N/I:P/A:N

0.007 Low

EPSS

Percentile

78.9%

JSON

Directory traversal vulnerability in dwnld.php in GuppY 4.5.11 allows remote attackers to overwrite arbitrary files via a “%2E.” (mixed encoding) in the pg parameter.

CPENameOperatorVersion
guppyeq4.5.10
guppyeq4.5.11
guppyeq2.4.0-p1
guppyeq4.5.4
guppyeq4.5.397
guppyeq2.4.0-p3
guppyeq4.5.9
guppyeq4.5
guppyeq2.4
guppyeq4.5.3

Name	Operator	Version
guppy	eq	4.5.10
guppy	eq	4.5.11
guppy	eq	2.4.0-p1
guppy	eq	4.5.4
guppy	eq	4.5.397
guppy	eq	2.4.0-p3
guppy	eq	4.5.9
guppy	eq	4.5
guppy	eq	2.4
guppy	eq	4.5.3

Rows per page:

1-10 of 111

References

secunia.com/advisories/19222

securityreason.com/securityalert/569

securitytracker.com/id?1015753

www.freeguppy.org/?lng=en

www.kapda.ir/advisory-291.html

www.osvdb.org/23846

www.osvdb.org/23993

www.securityfocus.com/archive/1/427329/100/0/threaded

www.securityfocus.com/bid/17068

www.vupen.com/english/advisories/2006/0936

exchange.xforce.ibmcloud.com/vulnerabilities/25141

7.2 High

AI Score

Confidence

Low

2.6 Low

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:N/I:P/A:N

0.007 Low

EPSS

Percentile

78.9%

JSON

Related for PRION:CVE-2006-1224

cve1