Unrated severityNVD Advisory· Published Jan 16, 2006· Updated Apr 16, 2026

CVE-2006-0223

Description

Directory traversal vulnerability in Shanghai TopCMM 123 Flash Chat Server Software 5.1 allows attackers to create or overwrite arbitrary files on the server via ".." (dot dot) sequences in the username field.

Affected products

Topcmm Computing/123 Flash Chat Server2 versions
cpe:2.3:a:topcmm_computing:123_flash_chat_server:5.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:topcmm_computing:123_flash_chat_server:5.0:*:*:*:*:*:*:*
- cpe:2.3:a:topcmm_computing:123_flash_chat_server:5.1:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.123flashchat.com/flash-chat-server-v512.htmlnvdPatch
www.securityfocus.com/bid/16235nvdPatch
secunia.com/advisories/18455nvdVendor Advisory
www.vupen.com/english/advisories/2006/0198nvdVendor Advisory
www.osvdb.org/22440nvd
exchange.xforce.ibmcloud.com/vulnerabilities/24137nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000