Unrated severityNVD Advisory· Published Feb 15, 2006· Updated Jun 16, 2026
CVE-2006-0707
CVE-2006-0707
Description
PyBlosxom before 1.3.2, when running on certain webservers, allows remote attackers to read arbitrary files via an HTTP request with multiple leading / (slash) characters, which is accessed using the PATH_INFO variable.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.