← Voltar para CVEs
CVE-2006-1119
N/ADescricao
fantastico in Cpanel does not properly handle when it has insufficient permissions to perform certain file operations, which allows remote authenticated users to obtain the full pathname, which is leaked in a PHP error message.
Detalhes CVE
Pontuacao CVSS v3.1N/A
Publicado3/9/2006
Ultima modificacao4/16/2026
Fontenvd
Avistamentos honeypot0
Produtos afetados
cpanel:cpanelnetenberg:fantastico_de_luxe
Fraquezas (CWE)
CWE-264
Referencias
http://www.securityfocus.com/archive/1/426957/100/0/threaded(cve@mitre.org)
https://exchange.xforce.ibmcloud.com/vulnerabilities/25277(cve@mitre.org)
http://www.securityfocus.com/archive/1/426957/100/0/threaded(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/25277(af854a3a-2127-422b-91ae-364da2661108)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.