CVE-2006-1995

Scry Gallery 1.1 - Directory Traversal via p Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-1995. PoCs published by Morocco Security Team.

AI-analyzed exploit summary This exploit demonstrates a directory traversal vulnerability in Scry Gallery by manipulating the 'p' parameter to access arbitrary files. The PoC URL shows how an attacker can traverse directories to leak sensitive files.

Description

Directory traversal vulnerability in index.php in Scry Gallery 1.1 allows remote attackers to read arbitrary files via ".." sequences in the p parameter, which is not properly sanitized due to an rtrim function call with the arguments in the wrong order.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Morocco Security Team · textwebappsphp

https://www.exploit-db.com/exploits/27724

View Code ZIP pw:eip

This exploit demonstrates a directory traversal vulnerability in Scry Gallery by manipulating the 'p' parameter to access arbitrary files. The PoC URL shows how an attacker can traverse directories to leak sensitive files.

Classification

Working Poc 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Scry Gallery (version not specified)

No auth needed

Prerequisites: Access to the vulnerable web application

MITRE ATT&CK