CVE-2006-0508

high

Description

Easy CMS stores the images directory under the web document root with insufficient access control and browsing enabled, which allows remote attackers to list and possibly read images that are stored in that directory.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/24373

http://www.securityfocus.com/archive/1/424431/100/0/threaded

http://www.securityfocus.com/archive/1/423442/100/0/threaded

http://secunia.com/advisories/18673

Details

Source: Mitre, NVD

Published: 2006-02-01

Updated: 2026-04-16

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Severity: High

EPSS

EPSS: 0.00357

Detections

Analytics