2 matches found
CVE-2006-0434
Directory traversal vulnerability in action.php in phpXplorer allows remote attackers to read arbitrary files via ".." dot dot sequences and null bytes in the sAction parameter, a different vulnerability than CVE-2006-0244. NOTE: if the functionality of phpXplorer supports the upload of PHP files...
CVE-2006-0434
CVE-2006-0434 is a directory-traversal vulnerability in phpXplorer 0.9.33 affecting the file workspaces.php, via the sShare parameter using dot-dot sequences and a trailing null byte (%00) to read arbitrary files. Exploitation status is not provided in the connected documents; the issue is discus...