Vulnerabilities > CVE-2006-7110 - Unspecified vulnerability in Drupal Imce Module

047910
CVSS 5.5 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
SINGLE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
drupal

Summary

Directory traversal vulnerability in the delete function in IMCE before 1.6, a Drupal module, allows remote authenticated users to delete arbitrary files via ".." sequences.

Vulnerable Configurations

Part Description Count
Application
Drupal
1