Vulnerabilities > CVE-2006-5834 - Local File Include vulnerability in Opensolution Quick.Cms.Lite 0.3

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

low complexity

opensolution

exploit available

NVD

Published: 2006-11-10

Updated: 2017-10-19

Summary

Directory traversal vulnerability in general.php in OpenSolution Quick.Cms.Lite 0.3 allows remote attackers to include arbitrary files via a .. (dot dot) sequence in the sLanguage Cookie parameter.

Vulnerable Configurations

Part	Description	Count
Application	Opensolution Opensolution Quick.Cms.Lite 0.3	1

Exploit-Db

description	Quick.Cms.Lite <= 0.3 (Cookie sLanguage) Local File Include Exploit. CVE-2006-5834. Webapps exploit for php platform
file	exploits/php/webapps/2719.php
id	EDB-ID:2719
last seen	2016-01-31
modified	2006-11-05
platform	php
port
published	2006-11-05
reporter	Kacper
source	https://www.exploit-db.com/download/2719/
title	Quick.Cms.Lite <= 0.3 Cookie sLanguage Local File Include Exploit
type	webapps

Summary

Vulnerable Configurations

Exploit-Db

References