CVE-2006-4919
Site@School <2.4.02 - Path Traversal
Title source: llmDescription
Directory traversal vulnerability in starnet/editors/htmlarea/popups/images.php in Site@School (S@S) 2.4.02 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the dir parameter.
Exploits (1)
References (6)
Scores
EPSS
0.0104
EPSS Percentile
77.5%
Details
Status
published
Products (1)
siteatschool/siteatschool
< 2.4.02
Published
Sep 21, 2006
Tracked Since
Feb 18, 2026