CVE-2006-1164

Nodez <4.6.1.1 - Info Disclosure

Title source: llm

Description

Nodez 4.6.1.1 and earlier stores sensitive data in the list.gtdat file under the web document root with insufficient access control, which allows remote attackers to obtain usernames and password hashes by directly accessing list.gtdat.

Exploits (1)

exploitdb WORKING POC VERIFIED

by rgod · phpwebappsphp

https://www.exploit-db.com/exploits/1588

View Code ZIP pw:eip

References (3)

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/17066

[Exploit] http://hamid.ir/security/nodez.txt

[Third Party Advisory, VDB Entry] http://www.osvdb.org/23775

Scores

EPSS 0.0306

EPSS Percentile 86.8%

Details

Status published

Products (1)

nodez/nodez 4.6.1.1

Published Mar 12, 2006

Tracked Since Feb 18, 2026