CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-6186

Multiple directory traversal vulnerabilities in enomphp 4.0 allow remote attackers to read arbitrary files via a .. (dot dot) in the dir parameter to (1) config.php, (2) ranklv_inside.php, (3) rankml_inside.php, and (4) admin/Restore/config.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 45.5%

CVSS Severity

CVSS v2 Score 5.0

References

http://securityreason.com/securityalert/1940
http://www.attrition.org/pipermail/vim/2006-November/001152.html
http://www.securityfocus.com/archive/1/452123/100/100/threaded
https://exchange.xforce.ibmcloud.com/vulnerabilities/30437
http://securityreason.com/securityalert/1940
http://www.attrition.org/pipermail/vim/2006-November/001152.html
http://www.securityfocus.com/archive/1/452123/100/100/threaded
https://exchange.xforce.ibmcloud.com/vulnerabilities/30437

Products affected by CVE-2006-6186

Enomphp » Enomphp » Version: 4.0

cpe:2.3:a:enomphp:enomphp:4.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-6186

Products

Pricing

Contact Us