CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-4190

Directory traversal vulnerability in autohtml.php in the AutoHTML module for PHP-Nuke allows local users to include arbitrary files via a .. (dot dot) in the name parameter for a modload operation.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 52.6%

CVSS Severity

CVSS v2 Score 2.1

References

http://securityreason.com/securityalert/1398
http://www.lezr.com/vb/showthread.php?p=104324
http://www.securityfocus.com/archive/1/443289/100/0/threaded
http://www.securityfocus.com/bid/19525
https://exchange.xforce.ibmcloud.com/vulnerabilities/28388
http://securityreason.com/securityalert/1398
http://www.lezr.com/vb/showthread.php?p=104324
http://www.securityfocus.com/archive/1/443289/100/0/threaded
http://www.securityfocus.com/bid/19525
https://exchange.xforce.ibmcloud.com/vulnerabilities/28388

Products affected by CVE-2006-4190

Php-Nuke » Autohtml Module » Version: 2.0

cpe:2.3:a:php-nuke:autohtml_module:2.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-4190

Products

Pricing

Contact Us