CVE-2006-6999 · Vexday

CVE-2006-6999

EPSS 1.0%

attachment.php in Headstart Solutions DeskPRO allows remote attackers to read all uploaded files by providing the file number in a modified id parameter.

Affected products

n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://www.zion-security.com/text/Mul_Vulnerability_DeskPro.txt