Vulnerabilities > CVE-2006-2791 - Directory Traversal vulnerability in Iboutique.Mall

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

net-art-media

NVD

Published: 2006-06-03

Updated: 2018-10-18

Summary

Directory traversal vulnerability in index.php in iBoutique.MALL and possibly iBoutique allows remote attackers to read arbitrary files via ".." sequences in the function parameter.

Vulnerable Configurations

Part	Description	Count
Application	Net_Art_Media NET ART Media Iboutique.Mall *	1

References

http://securityreason.com/securityalert/1023
http://www.securityfocus.com/archive/1/435164/100/0/threaded
https://exchange.xforce.ibmcloud.com/vulnerabilities/26739