CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-2839

Directory traversal vulnerability in PG Problem Editor module (PGProblemEditor.pm) in WeBWorK Online Homework Delivery System 2.2.0 and earlier allows remote attackers to read and write files outside of the templates directory.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.017

EPSS Ranking 74.6%

CVSS Severity

CVSS v2 Score 6.4

References

http://devel.webwork.rochester.edu/twiki/bin/view/Webwork/WeBWorKRelease2pt2pt1
http://secunia.com/advisories/20405
http://sourceforge.net/mailarchive/forum.php?thread_id=10201693&forum_id=43257
http://sourceforge.net/project/shownotes.php?release_id=421453
http://www.vupen.com/english/advisories/2006/2086
https://exchange.xforce.ibmcloud.com/vulnerabilities/26975
http://devel.webwork.rochester.edu/twiki/bin/view/Webwork/WeBWorKRelease2pt2pt1
http://secunia.com/advisories/20405
http://sourceforge.net/mailarchive/forum.php?thread_id=10201693&forum_id=43257
http://sourceforge.net/project/shownotes.php?release_id=421453
http://www.vupen.com/english/advisories/2006/2086
https://exchange.xforce.ibmcloud.com/vulnerabilities/26975

Products affected by CVE-2006-2839

Webwork » Webwork » Version: Any

cpe:2.3:a:webwork:webwork:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-2839

Products

Pricing

Contact Us