CVE-2006-1963

NONECVSS 0.0

0.0

Directory traversal vulnerability in main.php in PCPIN Chat 5.0.4 and earlier allows remote authenticated users to include and execute arbitrary PHP code via a ".." (dot dot) in a language cookie, as demonstrated by uploading then accessing a smiliefile image that actually contains PHP code.

🔗 References (16)

cve@mitrehttp://retrogod.altervista.org/pcpin_504_xpl.html
cve@mitrehttp://secunia.com/advisories/19708
cve@mitrehttp://securitytracker.com/id?1015968
cve@mitrehttp://www.securityfocus.com/archive/1/431390/100/0/threaded
cve@mitrehttp://www.securityfocus.com/archive/1/436029/100/0/threaded
cve@mitrehttp://www.securityfocus.com/bid/17632
cve@mitrehttp://www.vupen.com/english/advisories/2006/1441
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/25962
af854a3a-2127-422b-91ae-364da2661108http://retrogod.altervista.org/pcpin_504_xpl.html
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/19708
af854a3a-2127-422b-91ae-364da2661108http://securitytracker.com/id?1015968
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/431390/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/436029/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/17632
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2006/1441

Is Your Infrastructure Affected by CVE-2006-1963?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2006-1963

📅 Published

🔄 Last Modified

🔗 References (16)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2006-1963?