CVE-2006-1119

fantastico in Cpanel does not properly handle when it has insufficient permissions to perform certain file operations, which allows remote authenticated users to obtain the full pathname, which is leaked in a PHP error message.

Published: Mar 9, 2006
Updated: Apr 13, 2023
CVE: CVE-2006-1119
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4
AV:N/AC:L/Au:S/C:P/I:N/A:N

CWEs:

CWE-264

Affected Software
References

Software	From	Fixed in
netenberg / fantastico_de_luxe	-	-

http://www.securityfocus.com/archive/1/426957/100/0/threaded
https://exchange.xforce.ibmcloud.com/vulnerabilities/25277

Vulnerability Database

290,206

CVE-2006-1119