CVE-2006-7154

Medium

5/10

Summary

Iono allows remote attackers to obtain the full server path via certain requests to (1) templates/iono/admin/denied.tpl.php, (2) templates/iono/admin/index.tpl.php, and (a) other unspecified files in templates/.

Access Complexity: LOW
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: NONE
Confidentiality Impact: PARTIAL
Availability Impact: NONE

References

Advisory Timeline

Published Mar 07, 2007

CVE-2006-7154

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS