Vulnerability Details CVE-2006-3488
Absolute path traversal vulnerability in administrador.asp in VirtuaStore 2.0 allows remote attackers to possibly read arbitrary directories or files via an absolute path with Windows drive letter in the Pasta parameter when link=util, acao=ftp, and acaba=sim.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 55.5%
CVSS Severity
CVSS v2 Score 5.0
Products affected by CVE-2006-3488
-
cpe:2.3:a:virtuastore:virtuastore:2.0