Vulnerabilities > CVE-2006-7154 - Unspecified vulnerability in Iono
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Iono allows remote attackers to obtain the full server path via certain requests to (1) templates/iono/admin/denied.tpl.php, (2) templates/iono/admin/index.tpl.php, and (a) other unspecified files in templates/.
References
- http://securityreason.com/securityalert/2386
- http://www.osvdb.org/32410
- http://www.osvdb.org/32411
- http://www.osvdb.org/32412
- http://www.securityfocus.com/archive/1/448446/100/0/threaded
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29505
- http://securityreason.com/securityalert/2386
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29505
- http://www.securityfocus.com/archive/1/448446/100/0/threaded
- http://www.osvdb.org/32412
- http://www.osvdb.org/32411
- http://www.osvdb.org/32410