Описание
Directory traversal vulnerability in download/index.php, and possibly download.php, in threesquared.net (aka Ben Speakman) Php download allows remote attackers to overwrite arbitrary local files via .. (dot dot) sequence in the file parameter.
Directory traversal vulnerability in download/index.php, and possibly download.php, in threesquared.net (aka Ben Speakman) Php download allows remote attackers to overwrite arbitrary local files via .. (dot dot) sequence in the file parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-4651
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28751
- http://secunia.com/advisories/21774
- http://securityreason.com/securityalert/1528
- http://www.securityfocus.com/archive/1/445269/100/0/threaded
- http://www.securityfocus.com/bid/19872
- http://www.vupen.com/english/advisories/2006/3479
EPSS
Процентиль: 78%
0.01182
Низкий
CVE ID
Связанные уязвимости
nvd
больше 19 лет назад
Directory traversal vulnerability in download/index.php, and possibly download.php, in threesquared.net (aka Ben Speakman) Php download allows remote attackers to overwrite arbitrary local files via .. (dot dot) sequence in the file parameter.
EPSS
Процентиль: 78%
0.01182
Низкий