CVE-2006-1793 Information
Feb 14, 2021
cve
Description
Directory traversal vulnerability in runCMS 1.2 and earlier allows remote attackers to read arbitrary files via the bbPath[path] parameter to (1) class.forumposts.php and (2) forumpollrenderer.php. NOTE: this issue is closely related to CVE-2006-0659.
Reference
http://retrogod.altervista.org/runcms_13a_xpl.html http://www.securityfocus.com/archive/1/424708 http://www.securityfocus.com/bid/16578 Succesful exploitation requires that register_globals
On & allow_url_fopen
On
Share on: