CVE-2006-6028

Name of the Vulnerable Software and Affected Versions DoSePa version 1.0.4

Description A directory traversal issue exists, allowing remote attackers to read arbitrary files. This is achieved by using a .. (dot dot) sequence or absolute file path in the file parameter.

Recommendations For version 1.0.4, update to a newer version that contains a fix for this issue. As a temporary workaround, consider restricting access to the textview.php file to minimize the risk of exploitation. Avoid using absolute file paths or .. (dot dot) sequences in the file parameter until the issue is resolved.