CVE-2005-4600
CVE-2005-4600 describes a directory traversal vulnerability in TinyMCE Compressor PHP prior to 1.06. An attacker can cause the PHP script tiny_mce_gzip.php to read or include arbitrary files by supplying a trailing null byte (%00) in one of four parameters: theme, language, plugins, or lang. The ...