Описание
Directory traversal vulnerability in resetpw.php in eschew.net phpBannerExchange 2.0 and earlier, and other versions before 2.0 Update 5, allows remote attackers to read arbitrary files via a .. (dot dot) in the email parameter during a "Recover password" operation (recoverpw.php).
Directory traversal vulnerability in resetpw.php in eschew.net phpBannerExchange 2.0 and earlier, and other versions before 2.0 Update 5, allows remote attackers to read arbitrary files via a .. (dot dot) in the email parameter during a "Recover password" operation (recoverpw.php).
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-1201
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25071
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25080
- http://archives.neohapsis.com/archives/fulldisclosure/2006-02/0879.html
- http://secunia.com/advisories/19127
- http://www.eschew.net/scripts/phpbe/2.0/releasenotes.php
- http://www.h4cky0u.org/advisories/HYSA-2006-004-phpbanner.txt
- http://www.osvdb.org/23720
- http://www.securityfocus.com/archive/1/426940/100/0/threaded
- http://www.securityfocus.com/bid/16996
- http://www.vupen.com/english/advisories/2006/0869
EPSS
CVE ID
Связанные уязвимости
Directory traversal vulnerability in resetpw.php in eschew.net phpBannerExchange 2.0 and earlier, and other versions before 2.0 Update 5, allows remote attackers to read arbitrary files via a .. (dot dot) in the email parameter during a "Recover password" operation (recoverpw.php).
EPSS