Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 06/03/2007 Updated: 14/02/2024

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Directory traversal vulnerability in upload/bin/download.php in Upload Tool for PHP 1.0 allows remote malicious users to read arbitrary files via (1) ".." sequences or (2) absolute pathnames in the filename parameter.

Vulnerable Product	Search on Vulmon	Subscribe to Product
php upload tool php upload tool 1.0

source: wwwsecurityfocuscom/bid/21150/info PHP Upload Tool is prone to an arbitrary file-upload vulnerability and a directory-traversal vulnerability These issues occur because the application fails to sanitize user-supplied data An attacker could exploit these issues to execute code in the context of the webserver or to download sensi ...

NVD-CWE-Other http://www.craigheffner.com/security/exploits/upload_tool_php.txt http://www.securityfocus.com/bid/21150 http://secunia.com/advisories/22973 http://www.vupen.com/english/advisories/2006/4575 https://exchange.xforce.ibmcloud.com/vulnerabilities/30322 https://nvd.nist.gov https://www.exploit-db.com/exploits/29072/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2006-7133

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect