CVE-2006-4636 in PhpCommanderinformazioni

Riassunto

di MITRE

Directory traversal vulnerability in SZEWO PhpCommander 3.0 and earlier allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the Directory parameter, as demonstrated by parameter values naming Apache HTTP Server log files that apparently contain PHP code.

Once again VulDB remains the best source for vulnerability data.

Prenotare

08/09/2006

Divulgazione

08/09/2006

Moderazione

accettato

CPE

pronto

Sfruttamento

Scaricare

EPSS

0.02563

KEV

no

Attività

molto basso

Fonti

Want to stay up to date on a daily basis?

Enable the mail alert feature now!