Directory traversal vulnerability in help/mini.php in X7 Chat 2.0.1 A1 and previous versions allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the help_file parameter, a different vector than CVE-2006-2156.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
x7 group x7 chat 1.3.5b |
||
x7 group x7 chat 1.3.4b |
||
x7 group x7 chat 1.1.1b |
||
x7 group x7 chat 1.0.0b |
||
x7 group x7 chat |
||
x7 group x7 chat 1.3.1b |
||
x7 group x7 chat 1.3.0b |
||
x7 group x7 chat 2.0.0 |
||
x7 group x7 chat 1.3.6 |
||
x7 group x7 chat 1.2.0b |
||
x7 group x7 chat 1.1.2b |
||
x7 group x7 chat 1.3.3b |
||
x7 group x7 chat 1.3.2b |