RSS   Vulnerabilities for 'Php download script'   RSS

2006-09-08
 
CVE-2006-4651

CWE-Other
 

 
Directory traversal vulnerability in download/index.php, and possibly download.php, in threesquared.net (aka Ben Speakman) Php download allows remote attackers to overwrite arbitrary local files via .. (dot dot) sequence in the file parameter.

 


Copyright 2024, cxsecurity.com

 

Back to Top