CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Pyblosxom: >> Pyblosxom >> 1.3 Security Vulnerabilities

CVE-2006-0707

PyBlosxom before 1.3.2, when running on certain webservers, allows remote attackers to read arbitrary files via an HTTP request with multiple leading / (slash) characters, which is accessed using the PATH_INFO variable.

CVSS Score

5.0

EPSS Score

0.004

Published

2006-02-15

Page 1

Vulnerabilities

Vulnerable Software

Pyblosxom: >> Pyblosxom >> 1.3 Security Vulnerabilities

Products

Pricing

Contact Us