Vulnerabilities > CVE-2006-5735 - File-Upload vulnerability in Punbb

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

punbb

nessus

NVD

Published: 2006-11-06

Updated: 2018-10-17

Summary

Directory traversal vulnerability in include/common.php in PunBB before 1.2.14 allows remote authenticated users to include and execute arbitrary local files via a .. (dot dot) in the language parameter, related to register.php storing a language value in the users table.

Vulnerable Configurations

Part	Description	Count
Application	Punbb Punbb Punbb *	1

Nessus

NASL family	CGI abuses
NASL id	PUNBB_REGISTER_LFI.NASL
description	The version of PunBB installed on the remote host fails to sanitize input to the
last seen	2020-06-01
modified	2020-06-02
plugin id	22932
published	2006-11-03
reporter	This script is Copyright (C) 2006-2018 Justin Seitz
source	https://www.tenable.com/plugins/nessus/22932
title	PunBB include/common.php language Parameter Local File Inclusion

Summary

Vulnerable Configurations

Nessus

References