Multiple directory traversal vulnerabilities in upfiles/index.php in Pc4 Uploader 10.0 and previous versions allow remote malicious users to read arbitrary files via (1) a .. (dot dot) or (2) absolute path in the file parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
pc4arb pc4 uploader 10.0 |