CVE-2006-7035

Name of the Vulnerable Software and Affected Versions Super Link Exchange Script version 1.0

Description The issue allows remote attackers to read arbitrary files due to a directory traversal vulnerability in the make thumbnail.php file. This is achieved by using ".." sequences in the imgpath parameter.

Recommendations For Super Link Exchange Script version 1.0, consider restricting access to the make thumbnail.php file or validating and sanitizing the imgpath parameter to prevent directory traversal attacks. As a temporary workaround, avoid using the imgpath parameter in the affected file until the issue is resolved.