2 matches found
CVE-2005-0214
Simple PHP Blog (SPHPBlog) 0.3.7c is vulnerable to a directory traversal flaw via the entry parameter, enabling remote read/write of arbitrary server files. Root cause is improper sanitization of user input. OpenVAS corroborates a traversal/arbitrary file access issue, with Nessus pointing to com...
CVE-2005-0214
Directory traversal vulnerability in Simple PHP Blog SPHPBlog 0.3.7c allows remote attackers to read or create arbitrary files via a .. dot dot in the entry parameter...