Vulnerability Details CVE-2006-0949
RaidenHTTPD 1.1.47 allows remote attackers to obtain source code of script files, including PHP, via crafted requests involving (1) "." (dot), (2) space, and (3) "/" (slash) characters.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 72.4%
CVSS Severity
CVSS v2 Score 5.0
References
- http://secunia.com/advisories/19032
- http://secunia.com/secunia_research/2006-15/advisory/
- http://www.osvdb.org/23616
- http://www.securityfocus.com/bid/16934
- http://www.vupen.com/english/advisories/2006/0807
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25037
- http://secunia.com/advisories/19032
- http://secunia.com/secunia_research/2006-15/advisory/
- http://www.osvdb.org/23616
- http://www.securityfocus.com/bid/16934
- http://www.vupen.com/english/advisories/2006/0807
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25037
Products affected by CVE-2006-0949
-
cpe:2.3:a:raidenhttpd:raidenhttpd:1.1.47