CVE-2006-5786 Information

Description

Directory traversal vulnerability in class2.php in e107 0.7.5 and earlier allows remote attackers to read and execute PHP code in arbitrary files via ..\ sequences in the e107language_e107cookie cookie to gsitemap.php.

Reference

http://www.securityfocus.com/bid/20913 https://exchange.xforce.ibmcloud.com/vulnerabilities/30030 https://www.exploit-db.com/exploits/2711