Description

Directory traversal vulnerability in the staticfilter component in CherryPy before 2.1.1 allows remote attackers to read arbitrary files via ".." sequences in unspecified vectors.

Remediation

References

CVE-2006-0847

Related Vulnerabilities

Python Resource Management Errors Vulnerability (CVE-2011-1521)

WordPress Plugin aoringo CAT setter Cross-Site Scripting (0.1.1)

WordPress Plugin WP Rocket Local File Inclusion (2.10.3)

Moodle CVE-2018-10891 Vulnerability (CVE-2018-10891)

Drupal CVE-2007-0626 Vulnerability (CVE-2007-0626)

Severity

Medium

Classification

CVE-2006-0847

Tags

Missing Update Known Vulnerabilities