CVE-2006-1073

simplog < 1.0.2 - Directory Traversal via act or blogid Parameters

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-1073. PoCs published by Retard.

AI-analyzed exploit summary The exploit describes a directory traversal vulnerability in Simplog 1.0.2, allowing attackers to access sensitive files by manipulating the 'act' or 'blogid' parameters. No actual exploit code is provided, only examples of malicious URLs.

Description

Directory traversal vulnerability in index.php in Daverave Simplog 1.0.2 and earlier allows remote attackers to include or read arbitrary .txt files via the (1) act and (2) blogid parameters.

Exploits (1)

exploitdb WRITEUP VERIFIED
by Retard · textwebappsphp
https://www.exploit-db.com/exploits/27357

The exploit describes a directory traversal vulnerability in Simplog 1.0.2, allowing attackers to access sensitive files by manipulating the 'act' or 'blogid' parameters. No actual exploit code is provided, only examples of malicious URLs.

Classification
Writeup 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Theoretical
Target: Simplog 1.0.2
No auth needed
Prerequisites: Access to the target web application
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (7)

Core 7
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/25067
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2006/0839
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/542
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/426769/100/0/threaded
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/19115
URL Repurposed x_refsource_misc
http://notlegal.ws/simplogsploit.txt
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/16965

Scores

EPSS 0.0307
EPSS Percentile 86.0%

Details

Status published
Products (1)
simplog/simplog < 1.0.2
Published Mar 08, 2006
Tracked Since Feb 18, 2026