Vulnerabilities > CVE-2006-5618 - Directory Traversal vulnerability in Netref 4
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Directory traversal vulnerability in script/cat_for_aff.php in Netref 4 allows remote attackers to read arbitrary files via a .. (dot dot) sequence in the ad_direct parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | Netref 4 (cat_for_aff.php) Source Code Disclosure Exploit. CVE-2006-5618. Webapps exploit for php platform |
file | exploits/php/webapps/2677.asp |
id | EDB-ID:2677 |
last seen | 2016-01-31 |
modified | 2006-10-29 |
platform | php |
port | |
published | 2006-10-29 |
reporter | ajann |
source | https://www.exploit-db.com/download/2677/ |
title | Netref 4 cat_for_aff.php Source Code Disclosure Exploit |
type | webapps |