CVE-2006-2893 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2006-2893
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-2893

Description: index.php in GANTTy 1.0.3 allows remote attackers to obtain the full path of the web server via an invalid lang parameter in an authenticate action.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/26964 SREASON http://securityreason.com/securityalert/1060 SAID Secunia Advisory: SA20498 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/436125/100/0/threaded BID 18296

Return to the previous page.