Security Advisory

CVE-2006-0921

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2006-02-28 11:00:00

Last updated 2024-08-07 16:56:13

Assigner mitre

State PUBLISHED

Description

Multiple directory traversal vulnerabilities in connector.php in FCKeditor 2.0 FC, as used in products such as RunCMS, allow remote attackers to list and create arbitrary directories via a .. (dot dot) in the CurrentFolder parameter to (1) GetFoldersAndFiles and (2) CreateFolder.

← Browse all CVEs View on cve.org ↗