← voltar
CVE-2006-0445

CVE-2006-0445

EPSS 1.2%
index.php in Phpclanwebsite 1.23.1 allows remote authenticated users to obtain the installation path by specifying an invalid file name to the uploader page, as demonstrated by "\", which will display the full path of uploader.php. NOTE: this might be the result of a file inclusion vulnerability.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://www.h4cky0u.org/advisories/HYSA-2006-002-phpclan.txthttp://www.osvdb.org/22721http://www.securityfocus.com/archive/1/423145/100/0/threadedhttp://www.securityfocus.com/bid/16391