Vulnerabilities > CVE-2006-2280 - Unspecified vulnerability in Openengine 1.7.1/1.8Beta2
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Directory traversal vulnerability in website.php in openEngine 1.8 Beta 2 and earlier allows remote attackers to list arbitrary directories and read arbitrary files via a .. (dot dot) in the template parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |
Exploit-Db
description | OpenEngine 1.7/1.8 Template Unauthorized Access Vulnerability. CVE-2006-2280 . Webapps exploit for php platform |
id | EDB-ID:27823 |
last seen | 2016-02-03 |
modified | 2006-05-08 |
published | 2006-05-08 |
reporter | [email protected] |
source | https://www.exploit-db.com/download/27823/ |
title | OpenEngine 1.7/1.8 Template Unauthorized Access Vulnerability |