← Back

CVE-2006-5205

nvd nist
Published: Oct 10, 2006Modified: Apr 23, 2026

JSON object

Loading...
5.0
Vector
AV:N/AC:L/Au:N/C:P/I:N/A:N
Exploitability: 10.0 / Impact: 2.9
Source: NVD

Description

Directory traversal vulnerability in Invision Gallery 2.0.7 allows remote attackers to read arbitrary files via a .. (dot dot) sequence in the dir parameter in (1) index.php and (2) forum/index.php, when the viewimage command in the gallery module is used.

Affected (6)

Invision Power Services
1 product
Invision Gallery
Configuration A
6 vulnerable
Vulnerable SoftwareAffected Versions
Invision Gallery
Version 1.0.1
Invision Gallery
Version 1.3.1
Invision Gallery
Version 1.3
Invision Gallery
Version 2.0.3
Invision Gallery
Version 2.0.6
Invision Gallery
Version 2.0.7

References (8)

Source: cve@mitre.org
Source: cve@mitre.org
Exploit
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.