7 High
AI Score
Confidence
Low
0.074 Low
EPSS
Percentile
94.1%
Directory traversal vulnerability in the (1) rmdir or (2) mkdir commands in upload.php in YaPiG 0.92b, 0.93u and 0.94u allows remote attackers to create or delete arbitrary directories via a … (dot dot) in the dir parameter.
secunia.com/advisories/15600/
securitytracker.com/id?1014103
secwatch.org/advisories/secwatch/20050530_yapig.txt
www.osvdb.org/17120
www.securityfocus.com/bid/13877