CVE-2006-0625 Information
Description
Directory traversal vulnerability in Spip_RSS.PHP in SPIP 1.8.2g and earlier allows remote attackers to read or include arbitrary files via ..\ sequences in the GLOBALS[type_urls] parameter which could then be used to execute arbitrary code via resultant direct static code injection in the file parameter to spip_acces_doc.php3.
Reference
http://retrogod.altervista.org/spip_182g_shell_inj_xpl.html
http://secunia.com/advisories/18676
http://securitytracker.com/id?1015602
http://www.osvdb.org/23086
http://www.securityfocus.com/bid/16556
http://www.vupen.com/english/advisories/2006/0483
https://exchange.xforce.ibmcloud.com/vulnerabilities/24600
Directory
traversal
vulnerability
in
Spip_RSS.PHP
in
SPIP
1.8.2g
and
earlier
allows
remote
attackers
to
read
or
include
arbitrary
files
via
..
sequences
in
the
GLOBALS[type_urls]
parameter
which
could
then
be
used
to
execute
arbitrary
code
via
resultant
direct
static
code
injection
in
the
file
parameter
to
spip_acces_doc.php3.