Lucene search
K

5 matches found

NVD
NVD
added 2006/08/21 8:4 p.m.11 views

CVE-2006-4260

Directory traversal vulnerability in index.php in Fotopholder 1.8 allows remote attackers to read arbitrary directories or files via a .. dot dot in the path parameter...

5CVSS6.7AI score0.01774EPSS
Exploits0References6
Cvelist
Cvelist
added 2006/08/21 8:0 p.m.20 views

CVE-2006-4260

Directory traversal vulnerability in index.php in Fotopholder 1.8 allows remote attackers to read arbitrary directories or files via a .. dot dot in the path parameter...

6.7AI score0.01774EPSS
Exploits0References6
CVE
CVE
added 2006/08/21 8:0 p.m.37 views

CVE-2006-4259

Fotopholder 1.8 contains a cross-site scripting (XSS) flaw in index.php that allows an attacker to inject arbitrary script or HTML via the path parameter. The vulnerability is noted as potentially stemming from a directory traversal issue. Affected software: Fotopholder 1.8 (index.php). Consequen...

2.6CVSS5.9AI score0.01582EPSS
Exploits0References8Affected Software1
CVE
CVE
added 2006/08/21 8:0 p.m.44 views

CVE-2006-4260

Fotopholder 1.8 is affected by a directory traversal in index.php, allowing remote attackers to read arbitrary directories or files via a .. in the path parameter. The root cause is insufficient sanitization/verification of the path input. Impact is partial confidentiality (read access only). No ...

5CVSS7AI score0.01774EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2006/08/21 8:0 p.m.13 views

CVE-2006-4259

Cross-site scripting XSS vulnerability in index.php in Fotopholder 1.8 allows remote attackers to inject arbitrary web script or HTML via the path parameter. NOTE: this might be resultant from a directory traversal vulnerability...

5.7AI score0.01582EPSS
Exploits0References8
Rows per page
Query Builder