CVE-2006-4759
CVE-2006-4759 concerns PunBB 1.2.12. A vulnerability exists where an avatar directory pathname ending in %00 can be exploited by remote authenticated administrative users to upload arbitrary files and execute code, demonstrated via a query to admin_options.php with avatars_dir ending in %00. The ...