NuytsTech Security

CVE-2006-2156

by ·

Directory traversal vulnerability in help/index.php in X7 Chat 2.0 and earlier allows remote attackers to include arbitrary files via .. (dot dot) sequences in the help_file parameter.

Date published : 2006-05-03

http://www.securityfocus.com/bid/17777

http://www.securityfocus.com/archive/1/432716/100/0/threaded

Tags: