CyberSec.Space Logo
Back to CVE Browser

CVE-2006-6069

MEDIUM
5.0
CVSS Severity Score
EPSS Score0.0640%
EPSS Percentile10.49th
PublishedNov 22, 2006
Last ModifiedApr 23, 2026

Vulnerability Description

index.php in mAlbum 0.3 and earlier allows remote attackers to obtain the installation path via an invalid gal parameter.

Affected Platforms (CPE)

πŸ“¦
Malbum

Malbum

<= 0.3

References & Advisories

πŸ”— http://www.securityfocus.com/archive/1/452169/100/0/threaded
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/30430
πŸ”— http://www.securityfocus.com/archive/1/452169/100/0/threaded
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/30430

Related Vulnerabilities

CVE-2007-104510.0

mAlbum 0.3 has default accounts (1) "login"/"pass" for its administrative account and (2) "dqsfg"/"sdfg", which allows remote atta...

CVE-2006-60682.6

Directory traversal vulnerability in the cached_album function in functions.php for mAlbum 0.3 and earlier allows remote attackers...

CVE-2006-446110.0

Paessler IPCheck Server Monitor before 5.3.3.639/640 does not properly implement a "list of acceptable host IP addresses in the pr...

CVE-2006-607610.0

Buffer overflow in the Tape Engine (tapeeng.exe) in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and earlier ...