Description

Directory traversal vulnerability in the staticfilter component in CherryPy before 2.1.1 allows remote attackers to read arbitrary files via ".." sequences in unspecified vectors.

Remediation

References

CVE-2006-0847

Related Vulnerabilities

Grafana Server-Side Request Forgery (SSRF) Vulnerability (CVE-2020-13379)

Oracle JRE CVE-2012-5077 Vulnerability (CVE-2012-5077)

WordPress Plugin WP Mobile Edition Arbitrary File Disclosure (2.2.7)

WordPress 6.0.x Multiple Vulnerabilities (6.0 - 6.0.6)

WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2019-17671)

Severity

Medium

Classification

CVE-2006-0847

Tags

Missing Update Known Vulnerabilities