Directory traversal vulnerability in runCMS 1.2 and earlier allows remote attackers to read arbitrary files via the bbPath[path] parameter to (1) class.forumposts.php and (2) forumpollrenderer.php. NOTE: this issue is closely related to CVE-2006-0659.
References
Link | Resource |
---|---|
http://retrogod.altervista.org/runcms_13a_xpl.html | Exploit |
http://www.securityfocus.com/archive/1/424708 | Exploit Vendor Advisory |
http://www.securityfocus.com/bid/16578 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2006-04-17T10:00:00
Updated: 2006-04-22T09:00:00
Reserved: 2006-04-17T00:00:00
Link: CVE-2006-1793
JSON object: View
NVD Information
Status : Analyzed
Published: 2006-04-17T10:02:00.000
Modified: 2008-09-05T21:02:51.637
Link: CVE-2006-1793
JSON object: View
Redhat Information
No data.
CWE