Lucene search
MitreCVELIST:CVE-2006-0202HistoryJan 13, 2006 - 11:00 p.m.
CVE-2006-0202
2006-01-1323:00:00
mitre
www.cve.org
Dave Nielsen and Patrick Breitenbach PayPal Web Services (aka PHP Toolkit) 0.50 and possibly earlier has (1) world-readable permissions for ipn/logs/ipn_success.txt, which allows local users to view sensitive information (payment data), and (2) world-writable permissions for ipn/logs, which allows local users to delete or replace payment data.
Related
cve
cve
CVE-2006-0202
2006-01-13 23:03:00
nvd
nvd
CVE-2006-0202
2006-01-13 23:03:00
prion
prion
Code injection
2006-01-13 23:03:00