Vulnerability Database

309,469

Total vulnerabilities in the database

CVE-2006-1119

fantastico in Cpanel does not properly handle when it has insufficient permissions to perform certain file operations, which allows remote authenticated users to obtain the full pathname, which is leaked in a PHP error message.

Published: Mar 9, 2006
Updated: Nov 9, 2025
CVE: CVE-2006-1119
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4
AV:N/AC:L/Au:S/C:P/I:N/A:N

CWEs:

CWE-264

Affected Software
References

Software	From	Fixed in
netenberg / fantastico_de_luxe	-	-

http://www.securityfocus.com/archive/1/426957/100/0/threaded
https://exchange.xforce.ibmcloud.com/vulnerabilities/25277

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo