|
|
CVE Reference: CVE-2006-7049 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2006-7049 |
|
|
Description: The Method method in WikkaWiki (Wikka Wiki) before 1.1.6.2 calls the strstr and strrpos functions with the wrong argument order, which allows remote attackers to bypass intended access restrictions and access arbitrary PHP files. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/27226 SAID Secunia Advisory: SA20628 OSVDB 26543 CONFIRM http://wikkawiki.org/WikkaReleaseNotes BID 18484 |
|
| Return to the previous page. |
