cbcvebase.
CVE-2006-1224
published 2006-03-14

CVE-2006-1224: Directory traversal vulnerability in dwnld.php in GuppY 4.5.11 allows remote attackers to overwrite arbitrary files via a "%2E." (mixed encoding) in the pg…

PriorityP429low2.6CVSS 2.0
AVNACHAuNCNIPAN
EXPLOIT
EPSS
3.61%
88.0th percentile
Directory traversal vulnerability in dwnld.php in GuppY 4.5.11 allows remote attackers to overwrite arbitrary files via a "%2E." (mixed encoding) in the pg parameter.

Affected

11 ranges
VendorProductVersion rangeFixed in
guppyguppy
guppyguppy
guppyguppy
guppyguppy
guppyguppy
guppyguppy
guppyguppy
guppyguppy
guppyguppy
guppyguppy
guppyguppy
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.