CVE-2006-0125

Name of the Vulnerable Software and Affected Versions: AppServ version 2.4.5

Description: The issue allows remote attackers to include arbitrary files via the appserv root parameter in the appserv/main.php file. The nature of this issue, whether it is directory traversal, remote file include, or another problem, is not specified due to insufficient detail from third-party sources.

Recommendations: For AppServ version 2.4.5, consider restricting access to the appserv/main.php file to minimize the risk of exploitation. Avoid using the appserv root parameter in this file until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.