Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

NVD
NVDadded 2006/12/14 1:28 a.m.14 views

CVE-2006-6514

Winamp Web Interface Wawi 7.5.13 and earlier uses an insufficient comparison to determine whether a directory is located below the application's root directory, which allows remote authenticated users to access certain other directories if the name of the root directory is a substring of the name...

3.5CVSS6.3AI score0.00749EPSS
Exploits0References9
CVE
CVEadded 2006/12/14 1:0 a.m.41 views

CVE-2006-6513

The CVE-2006-6513 issue affects Winamp Web Interface (Wawi) prior to or equal to 7.5.13, where the CControl::Download handler (/dl) can be triggered by an authenticated remote user. A trailing "." in the file parameter enables downloading arbitrary file types from the root, due to a bug in IsWina...

3.5CVSS6.8AI score0.00645EPSS
Exploits1References9Affected Software1
CVE
CVEadded 2006/12/14 1:0 a.m.47 views

CVE-2006-6514

The vulnerability CVE-2006-6514 affects Winamp Web Interface (Wawi) versions 7.5.13 and earlier. It arises from an insufficient comparison to determine whether a directory is located below the application's root directory, enabling remote authenticated users to access certain other directories if...

3.5CVSS6.7AI score0.00749EPSS
Exploits0References9Affected Software1
Rows per page
Query Builder