CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-1793

Directory traversal vulnerability in runCMS 1.2 and earlier allows remote attackers to read arbitrary files via the bbPath[path] parameter to (1) class.forumposts.php and (2) forumpollrenderer.php. NOTE: this issue is closely related to CVE-2006-0659.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.023

EPSS Ranking 83.9%

CVSS Severity

CVSS v2 Score 7.6

References

http://retrogod.altervista.org/runcms_13a_xpl.html
http://www.securityfocus.com/archive/1/424708
http://www.securityfocus.com/bid/16578
http://retrogod.altervista.org/runcms_13a_xpl.html
http://www.securityfocus.com/archive/1/424708
http://www.securityfocus.com/bid/16578

Products affected by CVE-2006-1793

Runcms » Runcms » Version: Any

cpe:2.3:a:runcms:runcms:*
Runcms » Runcms » Version: 1.1

cpe:2.3:a:runcms:runcms:1.1
Runcms » Runcms » Version: 1.1a

cpe:2.3:a:runcms:runcms:1.1a

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-1793

Products

Pricing

Contact Us