Vulnerabilities > CVE-2006-5498 - File-Upload vulnerability in Segue Cms
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Directory traversal vulnerability in themes/program/themesettings.inc.php in Segue CMS 1.5.8 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the theme parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |