Vulnerabilities > CVE-2006-5735 - File-Upload vulnerability in Punbb

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
punbb
nessus

Summary

Directory traversal vulnerability in include/common.php in PunBB before 1.2.14 allows remote authenticated users to include and execute arbitrary local files via a .. (dot dot) in the language parameter, related to register.php storing a language value in the users table.

Vulnerable Configurations

Part Description Count
Application
Punbb
1

Nessus

NASL familyCGI abuses
NASL idPUNBB_REGISTER_LFI.NASL
descriptionThe version of PunBB installed on the remote host fails to sanitize input to the
last seen2020-06-01
modified2020-06-02
plugin id22932
published2006-11-03
reporterThis script is Copyright (C) 2006-2018 Justin Seitz
sourcehttps://www.tenable.com/plugins/nessus/22932
titlePunBB include/common.php language Parameter Local File Inclusion