Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0590

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2006-0590
Last Modified 05 Sep 2008 04:59:42
Published 07 Feb 2006 08:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-0590

Summary

MyTopix 1.2.3 allows remote attackers to obtain the installation path via an invalid hl parameter to index.php, which leads to path disclosure, possibly related to invalid SQL syntax.

Vulnerable Systems

Application

  • Jaia Interactive Mytopix 1.2.3


References

BUGTRAQ - 20060204 [KAPDA::#26] - MyTopix Sql Injection & Path Disclosure

MISC - http://kapda.ir/advisory-249.html

SREASON - 413


Last Updated: 27 May 2016 10:41:43