CVE-2006-1235

Directory traversal vulnerability in admin/deleteuser.php in HitHost 1.0.0 might allow remote attackers to delete directories (possibly only empty directories) via the $deleteuser variable. NOTE: the initial disclosure for this issue indicated that the researcher was unable to prove this issue; however, this might have been due to certain behaviors of rmdir.
Configurations

Configuration 1 (hide)

cpe:2.3:a:david_ravenscroft:hithost:1.0.0:*:*:*:*:*:*:*

History

No history.

Information

Published : 2006-03-14 23:02

Updated : 2024-02-28 10:42


NVD link : CVE-2006-1235

Mitre link : CVE-2006-1235

CVE.ORG link : CVE-2006-1235


JSON object : View

Products Affected

david_ravenscroft

  • hithost