CVE-2006-5716

Published: Nov 4, 2006

Modified: Aug 7, 2024

PUBLISHED

Description

Directory traversal vulnerability in aff_news.php in FreeNews 2.1 allows remote attackers to include local files via a .. (dot dot) sequence in the chemin parameter, when the aff_news parameter is not set to "1."

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

20061028 freenews---> fileinclude

mailing-list

x_refsource_BUGTRAQ

20795

vdb-entry

x_refsource_BID

1822

third-party-advisory

x_refsource_SREASON

20061031 Re: freenews---> fileinclude

mailing-list

x_refsource_BUGTRAQ

20061030 Re: freenews---> fileinclude

mailing-list

x_refsource_BUGTRAQ

freenews-affnews-file-include(29896)

vdb-entry

x_refsource_XF

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2006-5716

Description

Affected Products

References