CVE-2006-5618

Publication date

2006-10-31 06:00:00

Family

mitre

State

PUBLISHED

Description

Directory traversal vulnerability in script/cat_for_aff.php in Netref 4 allows remote attackers to read arbitrary files via a .. (dot dot) sequence in the ad_direct parameter.