Vulnerabilities > CVE-2006-6138 - Unspecified vulnerability in Sisfo Kampus Sisfo Kampus 0.8
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN sisfo-kampus
exploit available
Summary
Directory traversal vulnerability in download.php in Sisfo Kampus 0.8 allows remote attackers to list arbitrary directories via an absolute pathname in the dir parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Sisfo Kampus <= 0.8 Remote File Inclusion / Download Vulnerabilities. CVE-2006-6137,CVE-2006-6138,CVE-2006-6140. Webapps exploit for php platform |
| file | exploits/php/webapps/2847.txt |
| id | EDB-ID:2847 |
| last seen | 2016-01-31 |
| modified | 2006-11-25 |
| platform | php |
| port | |
| published | 2006-11-25 |
| reporter | Wawan Firmansyah |
| source | https://www.exploit-db.com/download/2847/ |
| title | Sisfo Kampus <= 0.8 - Remote File Inclusion / Download Vulnerabilities |
| type | webapps |