Back to search
CVE-2006-2014
Published: Apr 25, 2006
Modified: Aug 7, 2024
PUBLISHED
Description
Directory traversal vulnerability in gallerie.php in SL_site 1.0 allows remote attackers to list images in arbitrary directories via ".." sequences in the rep parameter, which is used to construct a directory name in admin/config.inc.php. NOTE: this issue could be used to produce resultant XSS from an error message.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
17672
vdb-entry
x_refsource_BID
1015972
vdb-entry
x_refsource_SECTRACK
24897
vdb-entry
x_refsource_OSVDB
ADV-2006-1487
vdb-entry
x_refsource_VUPEN
19792
third-party-advisory
x_refsource_SECUNIA
slsite-gallerie-directory-traversal(26037)
vdb-entry
x_refsource_XF
17667
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now