1. Home
  2. CVE Database
  3. CVE-2006-6384
HIGH · 7.8

CVE-2006-6384

Absolute path traversal vulnerability in abitwhizzy.php before 20061204 allows remote attackers to read arbitrary files via an absolute pathname in the Filename text window (f parameter), a variant of...

Vulnerability Description

Absolute path traversal vulnerability in abitwhizzy.php before 20061204 allows remote attackers to read arbitrary files via an absolute pathname in the Filename text window (f parameter), a variant of CVE-2006-6084.

CVSS Score

7.8

HIGH

AV:N/AC:L/Au:N/C:C/I:N/A:N
Confidentiality
COMPLETE
Integrity
NONE
Availability
NONE

Affected Products

VendorProductVersions
John GoodmanAbitwhizzyAll versions

References

FAQ

What is CVE-2006-6384?

CVE-2006-6384 is a vulnerability with a CVSS score of 7.8 (HIGH). Absolute path traversal vulnerability in abitwhizzy.php before 20061204 allows remote attackers to read arbitrary files via an absolute pathname in the Filename text window (f parameter), a variant of...

How severe is CVE-2006-6384?

CVE-2006-6384 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2006-6384?

Check the references section above for vendor advisories and patch information. Affected products include: John Goodman Abitwhizzy.