CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-2677

SiteScape Forum 7.2 and possibly earlier stores the avf.rc configuraiton file under the web document root with insufficient access control, which allows remote attackers to obtain sensitive path information.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 56.4%

CVSS Severity

CVSS v2 Score 5.0

References

http://secunia.com/advisories/20266
http://www.uniras.gov.uk/niscc/docs/br-20060525-00374.html?lang=en
https://exchange.xforce.ibmcloud.com/vulnerabilities/26671
http://secunia.com/advisories/20266
http://www.uniras.gov.uk/niscc/docs/br-20060525-00374.html?lang=en
https://exchange.xforce.ibmcloud.com/vulnerabilities/26671

Products affected by CVE-2006-2677

Sitescape » Sitescape Forum » Version: 7.2

cpe:2.3:a:sitescape:sitescape_forum:7.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-2677

Products

Pricing

Contact Us