CVE-2006-6028

DoSePa 1.0.4 - Unauthenticated Directory Traversal via File Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-6028. PoCs published by Craig Heffner.

AI-analyzed exploit summary This exploit demonstrates an information disclosure vulnerability in DoSePa 1.0.4 due to improper sanitization of the 'file' parameter in textview.php, allowing arbitrary file read access.

Description

Directory traversal vulnerability in textview.php in Anton Vlasov DoSePa 1.0.4 allows remote attackers to read arbitrary files via a .. (dot dot) sequence or absolute file path in the file parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Craig Heffner · textwebappsphp
https://www.exploit-db.com/exploits/2795

This exploit demonstrates an information disclosure vulnerability in DoSePa 1.0.4 due to improper sanitization of the 'file' parameter in textview.php, allowing arbitrary file read access.

Classification
Working Poc 100%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: DoSePa 1.0.4
No auth needed
Prerequisites: Access to the vulnerable textview.php endpoint
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/30349
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/2795
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2006/4576
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/21149
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/22960
Exploit, URL Repurposed x_refsource_misc
http://www.craigheffner.com/security/exploits/dosepa.txt

Scores

EPSS 0.0321
EPSS Percentile 86.5%

Details

Status published
Products (1)
anton_vlasov/dosepa 1.0.4
Published Nov 21, 2006
Tracked Since Feb 18, 2026