CVE-2006-1995

EPSS 9.49% · P93 Updated Feb 27, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2006-1995

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Directory traversal vulnerability in index.php in Scry Gallery 1.1 allows remote attackers to read arbitrary files via ".." sequences in the p parameter, which is not properly sanitized due to an rtrim function call with the arguments in the wrong order.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Scry Gallery index.php 目录遍历漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Scry Gallery 1.1 中的index.php存在目录遍历漏洞。这使得远程攻击者可以借助于参数p（该参数中包含..）序列读取任意文件。由于artrim函数调用中的参数顺序错误， p参数没有进行正确地安全处理。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2006-1995

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2006-1995

Please Login to view more intelligence information

http://downloads.securityfocus.com/vulnerabilities/exploits/17649-directory-traversal.exploitx_refsource_MISC
http://securityreason.com/securityalert/784third-party-advisoryx_refsource_SREASON
http://www.securityfocus.com/bid/17668vdb-entryx_refsource_BID
http://www.securityfocus.com/bid/17649vdb-entryx_refsource_BID
http://www.osvdb.org/24889vdb-entryx_refsource_OSVDB
http://secunia.com/advisories/19777third-party-advisoryx_refsource_SECUNIA
http://www.vupen.com/english/advisories/2006/1490vdb-entryx_refsource_VUPEN
http://attrition.org/pipermail/vim/2006-April/000716.htmlmailing-listx_refsource_VIM
https://exchange.xforce.ibmcloud.com/vulnerabilities/25991vdb-entryx_refsource_XF
http://www.securityfocus.com/archive/1/431716/100/0/threadedmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2006-1995

Same Patch Batch · n/a · 2006-04-25 · 50 CVEs total

CVE-2006-2013		SL_site page.php SQL注入漏洞
CVE-2006-2019		Apple Safari Web浏览器rowspan拒绝服务漏洞
CVE-2006-2023		Fenice远程溢出及拒绝服务漏洞
CVE-2006-1863		Linux kernel 安全漏洞
CVE-2006-2024		LibTiff 多个拒绝服务漏洞
CVE-2006-2025		LibTiff TIFFFetchData整数溢出漏洞
CVE-2006-2026		LibTiff ‘tif_jpeg.c’整数溢出漏洞
CVE-2006-2022		Fenice远程溢出及拒绝服务漏洞
CVE-2006-2015		SL_site 跨站脚本漏洞
CVE-2006-2014		SL_site gallerie.php 目录遍历漏洞
CVE-2006-2016		phpLDAPadmin 跨站脚本漏洞
CVE-2006-2012		Skulltag 格式化字符串漏洞
CVE-2006-2011		4images Member.PHP 跨站脚本攻击漏洞
CVE-2006-2010		Bloggage Check_login.ASP 多个SQL注入漏洞
CVE-2006-2009		PHPMyAgenda Agenda.PHP3 远程文件包含漏洞
CVE-2006-2008		Built2go Movie Review Movie_CLS.PHP3 远程文件包含漏洞
CVE-2006-2007		Winny 堆缓存区溢出漏洞
CVE-2006-2006		IZArc Archiver 多个目录遍历漏洞
CVE-2006-2005		ClanSys index.php Eval注入漏洞
CVE-2006-2004		RI Blog 多个SQL注入漏洞

Showing top 20 of 50 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2006-1995

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2006-1995

I. Basic Information for CVE-2006-1995

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2006-1995

III. Intelligence Information for CVE-2006-1995

Same Patch Batch · n/a · 2006-04-25 · 50 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2006-1995

Leave a comment