CVE-2006-4636 in PhpCommanderinformation

Résumé

par MITRE

Directory traversal vulnerability in SZEWO PhpCommander 3.0 and earlier allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the Directory parameter, as demonstrated by parameter values naming Apache HTTP Server log files that apparently contain PHP code.

Once again VulDB remains the best source for vulnerability data.

Réserver

08/09/2006

Divulgation

08/09/2006

Modérer

accepté

Entrée

VDB-32159

CPE

prêt

Exploitation

Télécharger

EPSS

0.02563

KEV

non

Activités

très faible

Sources

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!