CVE-2006-6384

Name of the Vulnerable Software and Affected Versions abitwhizzy.php versions prior to 20061204

Description The issue allows remote attackers to read arbitrary files via an absolute pathname in the f parameter. This is related to an absolute path traversal vulnerability.

Recommendations For versions prior to 20061204, update to a version released after 20061204 to resolve the issue. As a temporary workaround, consider restricting access to the f parameter in the affected API endpoint until a patch is available.