2 matches found
CVE-2005-1884
Directory traversal vulnerability in the 1 rmdir or 2 mkdir commands in upload.php in YaPiG 0.92b, 0.93u and 0.94u allows remote attackers to create or delete arbitrary directories via a .. dot dot in the dir parameter...
CVE-2005-1884
CVE-2005-1884 affects YaPiG (web-based PHP image gallery) versions 0.92b, 0.93u, and 0.94u. A directory traversal vulnerability exists in upload.php, where the dir parameter can be exploited with .. to create or delete arbitrary directories via rmdir or mkdir commands. Multiple sources (NVD entry...