Unrated severityNVD Advisory· Published Apr 19, 2006· Updated Apr 16, 2026

CVE-2006-1851

Description

xFlow 5.46.11 and earlier allows remote attackers to determine the installation path of the application via the (1) action parameter to members_only/index.cgi and (2) page parameter customer_area/index.cgi, probably due to invalid values.

Affected products

Skymarx Solutions/Xflow
cpe:2.3:a:skymarx_solutions:xflow:*:*:*:*:*:*:*:*
Range: <=5.46.11

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

pridels0.blogspot.com/2006/04/xflow-v5x-multiple-vuln.htmlnvd
www.securityfocus.com/bid/17614nvd
exchange.xforce.ibmcloud.com/vulnerabilities/25855nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000