CVE-2006-6569

High

7.8/10

Summary

form.php in GenesisTrader 1.0 allows remote attackers to read source code for arbitrary files and obtain sensitive information via the (1) do and (2) chem parameters with a "modfich" floap parameter.

Access Complexity: LOW
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: NONE
Confidentiality Impact: COMPLETE
Availability Impact: NONE

References

Advisory Timeline

Published Dec 15, 2006

CVE-2006-6569

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS