CVE-2006-4190
published 2006-08-17CVE-2006-4190: Directory traversal vulnerability in autohtml.php in the AutoHTML module for PHP-Nuke allows local users to include arbitrary files via a .. (dot dot) in the…
PriorityP418low2.1CVSS 2.0
AVLACLAuNCNIPAN
EXPLOIT
EPSS
0.82%
52.8th percentile
Directory traversal vulnerability in autohtml.php in the AutoHTML module for PHP-Nuke allows local users to include arbitrary files via a .. (dot dot) in the name parameter for a modload operation.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| francisco_burzi | php-nuke | — | — |
| php-nuke | autohtml_module | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-v5fg-m2vg-r2jx: Directory traversal vulnerability in autohtml
ghsa_unreviewed·2022-05-01·CVSS 2.1
CVE-2007-6376 [LOW] CWE-22 GHSA-v5fg-m2vg-r2jx: Directory traversal vulnerability in autohtml
Directory traversal vulnerability in autohtml.php in Francisco Burzi PHP-Nuke 8.0 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the filename parameter, a different vector than CVE-2006-4190. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
GHSA
GHSA-fhpw-jhpx-8qqw: Directory traversal vulnerability in autohtml
ghsa_unreviewed·2022-05-01
CVE-2006-4190 [LOW] GHSA-fhpw-jhpx-8qqw: Directory traversal vulnerability in autohtml
Directory traversal vulnerability in autohtml.php in the AutoHTML module for PHP-Nuke allows local users to include arbitrary files via a .. (dot dot) in the name parameter for a modload operation.
No detection rules found.
No writeups or analysis indexed.
http://securityreason.com/securityalert/1398http://www.lezr.com/vb/showthread.php?p=104324http://www.securityfocus.com/archive/1/443289/100/0/threadedhttp://www.securityfocus.com/bid/19525https://exchange.xforce.ibmcloud.com/vulnerabilities/28388http://securityreason.com/securityalert/1398http://www.lezr.com/vb/showthread.php?p=104324http://www.securityfocus.com/archive/1/443289/100/0/threadedhttp://www.securityfocus.com/bid/19525https://exchange.xforce.ibmcloud.com/vulnerabilities/28388
2006-08-17
Published