CVE-2006-6694
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2006-6694
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Directory traversal vulnerability in include/config.php in E-Uploader Pro 1.0 and earlier allows remote attackers to execute arbitrary PHP code via a .. (dot dot) in the language parameter, as demonstrated by uploading a .JPG file containing PHP code, then accessing the file via config.php.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
E-Uploader Pro 'Config.PHP'远程文件包含漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
E-Uploader Pro 1.0 及更早版本中的include/config.php存在目录遍历漏洞,远程攻击者可以通过在一个语言参数(该参数中包含..)来执行任意PHP代码,如通过上载含有PHP代码的.JPG文件,然后通过config.php访问此文件。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2006-6694
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2006-6694
请登录查看更多情报信息。
- http://www.rahim.webd.pl/exploity/Exploits/99.txtx_refsource_MISC
- https://nvd.nist.gov/vuln/detail/CVE-2006-6694
Same Patch Batch · n/a · 2006-12-21 · 29 CVEs total
| CVE-2006-6680 | Pedro Lineu Orso chetcpasswd 'chetcpasswd.allow'敏感信息泄露漏洞 | |
| CVE-2006-6678 | Netrik Textarea 'form-file.c' 任意命令执行漏洞 | |
| CVE-2006-6677 | NOD32 Anti-Virus .CHM文件计算错误漏洞 | |
| CVE-2006-6676 | NOD32 Anti-Virus多个文件解析安全漏洞 | |
| CVE-2006-6675 | Novell NetWare Welcome Web-App未明跨站脚本攻击漏洞 | |
| CVE-2006-6674 | Ozeki HTTP-SMS Gateway密码信息泄露漏洞 | |
| CVE-2006-6673 | WinFtp Server 长命令拒绝服务攻击 | |
| CVE-2006-6672 | Burak Yylmaz Download Portal SQL注入漏洞 | |
| CVE-2006-6671 | Burak Yilmaz Download Portal 'Down.ASP' SQL注入漏洞 | |
| CVE-2006-6685 | Pedro Lineu Orso chetcpasswd 栈缓冲区溢出漏洞 | |
| CVE-2006-6684 | Pedro Lineu Orso chetcpasswd HTTP报头缓冲区错误漏洞 | |
| CVE-2006-6683 | Chetcpasswd '/etc/shadow' 安全绕过漏洞 | |
| CVE-2006-6682 | Pedro Lineu Orso chetcpasswd 无效用户名请求安全信息泄露漏洞 | |
| CVE-2006-6681 | Pedro Lineu Orso chetcpasswd 密码暴力破解漏洞 | |
| CVE-2006-6686 | TextSend 'Sender.PHP'远程文件包含漏洞 | |
| CVE-2006-6679 | Pedro Lineu Orso chetcpasswd X-Forwarded-For HTTP报头欺骗未授权访问漏洞 | |
| CVE-2006-6104 | Mono XSP mod_mono模块目录遍历和源码信息泄露漏洞 | |
| CVE-2002-2221 | Chetcpasswd本地特权提升漏洞 | |
| CVE-2002-2220 | Pedro Lineu Orso chetcpasswd缓冲区溢出漏洞 | |
| CVE-2002-2219 | Chpasswd可远程访问敏感文件漏洞 |
Showing top 20 of 29 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8276
bettercap MySQL Server mysql_server.go integer coercion - CVE-2026-8275
bettercap zerogod IPP Service zerogod_ipp_primitives.go ippR - CVE-2026-8270
Open5GS SMF ogs_nas_parse_qos_rules denial of service - CVE-2026-8269
Open5GS SMF smf_nsmf_handle_create_sm_context denial of serv - CVE-2026-8268
Open5GS SMF OpenAPI_list_create denial of service
V. Comments for CVE-2006-6694
No comments yet