CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-7035

Directory traversal vulnerability in make_thumbnail.php in Super Link Exchange Script 1.0 allows remote attackers to read arbitrary files via ".." sequences in the imgpath parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 59.0%

CVSS Severity

CVSS v2 Score 7.8

References

http://securityreason.com/securityalert/2285
http://www.securityfocus.com/archive/1/435166/30/4680/threaded
https://exchange.xforce.ibmcloud.com/vulnerabilities/26722
http://securityreason.com/securityalert/2285
http://www.securityfocus.com/archive/1/435166/30/4680/threaded
https://exchange.xforce.ibmcloud.com/vulnerabilities/26722

Products affected by CVE-2006-7035

Super Link Exchange Script » Super Link Exchange Script » Version: 1.0

cpe:2.3:a:super_link_exchange_script:super_link_exchange_script:1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-7035

Products

Pricing

Contact Us