CVE-2006-0625

Name of the Vulnerable Software and Affected Versions SPIP versions 1.8.2g and earlier

Description The issue allows remote attackers to read or include arbitrary files via ".." sequences in the GLOBALS[type urls] parameter. This could then be used to execute arbitrary code via resultant direct static code injection in the file parameter to "spip acces doc.php3".

Recommendations For SPIP versions 1.8.2g and earlier, consider restricting access to the spip acces doc.php3 file and limiting the use of the GLOBALS[type urls] parameter until a fix is available. As a temporary workaround, avoid using the GLOBALS[type urls] parameter with ".." sequences to minimize the risk of exploitation.