cbcvebase.
CVE-2006-1793
published 2006-04-17

CVE-2006-1793: Directory traversal vulnerability in runCMS 1.2 and earlier allows remote attackers to read arbitrary files via the bbPath[path] parameter to (1)…

PriorityP337high7.6CVSS 2.0
AVNACHAuNCCICAC
EXPLOIT
EPSS
3.56%
87.9th percentile
Directory traversal vulnerability in runCMS 1.2 and earlier allows remote attackers to read arbitrary files via the bbPath[path] parameter to (1) class.forumposts.php and (2) forumpollrenderer.php. NOTE: this issue is closely related to CVE-2006-0659.

Affected

3 ranges
VendorProductVersion rangeFixed in
runcmsruncms<= 1.2
runcmsruncms
runcmsruncms
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.