PT-2006-7345 · Unknown · Phpprofiles
Publicado
2006-12-26
·
Atualizado
2008-09-05
·
CVE-2006-6744
CVSS v2.0
2.1
Baixa
| Vetor | AV:L/AC:L/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions:
phpProfiles versions prior to 2.1.1
Description:
The issue is related to the absence of an index file in certain directories, which could allow remote attackers to list directory contents or have other unknown impacts. The affected directories include image data, graphics/comm, and users read/write directories.
Recommendations:
For versions prior to 2.1.1, consider adding an index file, such as index.php, to the image data, graphics/comm, and users read/write directories to prevent directory listing.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Phpprofiles