Vulnerabilities > CVE-2006-1791 - Unspecified vulnerability in JL Webworks Quickblogger 1.4
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Directory traversal vulnerability in acc.php in QuickBlogger 1.4 allows remote attackers to read or include arbitrary local files via the request parameter. NOTE: this issue can also produce resultant XSS when the associated include statement fails.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://secunia.com/advisories/15942
- http://secunia.com/advisories/15942
- http://www.securityfocus.com/archive/1/430878/100/0/threaded
- http://www.securityfocus.com/archive/1/430878/100/0/threaded
- http://www.securityfocus.com/archive/1/431059/100/0/threaded
- http://www.securityfocus.com/archive/1/431059/100/0/threaded
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25795
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25795