CVE-2006-7110

Currently unrated

Key Information:

Vendor
Drupal
Status
Imce Module
Vendor
CVE Published:
5 March 2007

Summary

Directory traversal vulnerability in the delete function in IMCE before 1.6, a Drupal module, allows remote authenticated users to delete arbitrary files via ".." sequences.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/29324
vdb-entryx_refsource_XF
http://www.securityfocus.com/bid/20312
vdb-entryx_refsource_BID
http://drupal.org/node/87101
x_refsource_CONFIRM

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
🍪 This website uses cookies, like every other website on the internet 😕 By using our website, you consent to the use of cookies.