CVE-2006-6248

EPSS 0.43% · P63 Updated Feb 27, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2006-6248

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

index.php in GPhotos 1.5 allows remote attackers to obtain sensitive information via an invalid rep parameter, which reveals the full path in an error message.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Gphotos 'index.php' rep参数敏感信息泄露漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

GPhotos中的index.php存在敏感信息泄露漏洞。远程攻击者借助于无效的rep参数导致系统在出错消息内泄露完整路径从而获取敏感信息。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2006-6248

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2006-6248

请登录查看更多情报信息。

http://securityreason.com/securityalert/1951third-party-advisoryx_refsource_SREASON
https://exchange.xforce.ibmcloud.com/vulnerabilities/30390vdb-entryx_refsource_XF
http://www.securityfocus.com/archive/1/452025/100/200/threadedmailing-listx_refsource_BUGTRAQ
http://www.securityfocus.com/archive/1/452099/100/200/threadedmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2006-6248

Same Patch Batch · n/a · 2006-12-04 · 47 CVEs total

CVE-2006-6276		Sun Java系统服务器嵌入式HTTP请求处理漏洞
CVE-2006-6279		@lex Guestbook 'Index.PHP'多个输入验证漏洞
CVE-2006-6281		Dicshunary 'Check_Status.PHP'远程文件包含漏洞
CVE-2006-6284		Vikingboard 'Admin.PHP'目录遍历漏洞
CVE-2006-6285		Retired - Kai Blankenhorn Bitfolge simple和nice index文件'Index.PHP'远程文件包含漏洞
CVE-2006-6286		Palm Desktop Application Directory本地不安全许可漏洞
CVE-2006-6287		AtomixMP3 M3U/PLS播放列表解析缓冲区溢出漏洞
CVE-2006-6288		CoolPlayer多个缓冲区溢出漏洞
CVE-2006-6283		Vikingboard 多个跨站脚本攻击漏洞
CVE-2006-6277		ContentServ 'FileServer.php' 目录遍历漏洞
CVE-2006-6278		@lex Guestbook 'Index.PHP' 多个输入验证漏洞
CVE-2006-6275		Sun Solaris内核本地拒绝服务漏洞
CVE-2006-6274		Expinion.net iNews Publisher ‘Articles.ASP’SQL注入漏洞
CVE-2006-6273		Simple PHP Gallery System 'SP_Index.PHP'跨站脚本攻击漏洞
CVE-2006-6272		Simple PHP Gallery System 'SP_Index.PHP'跨站脚本攻击漏洞
CVE-2006-6271		PHPOLL 多个跨站脚本攻击(XSS)漏洞
CVE-2006-6270		ASPMForum　多个SQL注入漏洞
CVE-2006-6269		Infinitytechs Restaurants CM　多个SQL注入漏洞
CVE-2006-6268		Neocrome Land Down Under 'Profile.Inc.PHP' SQL注入漏洞
CVE-2006-6267		PostNuke stop参数敏感信息泄露漏洞

Showing top 20 of 47 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2006-6248

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2006-6248

I. Basic Information for CVE-2006-6248

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2006-6248

III. Intelligence Information for CVE-2006-6248

Same Patch Batch · n/a · 2006-12-04 · 47 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2006-6248

Leave a comment