CVE-2006-6938 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2006-6938

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Directory traversal vulnerability in includes/common.php in NitroTech 0.0.3a, as distributed before 2006, allows remote attackers to include arbitrary files via .. sequences in the root parameter.

Affected Software

Name	Vendor	Start Version	End Version
Nitrotech	Nitrotech	0.0.3a (including)	0.0.3a (including)

References

http://www.securityfocus.com/bid/20810
https://exchange.xforce.ibmcloud.com/vulnerabilities/29904
https://www.exploit-db.com/exploits/2685
http://www.securityfocus.com/bid/20810
https://exchange.xforce.ibmcloud.com/vulnerabilities/29904
https://www.exploit-db.com/exploits/2685