2 matches found
CVE-2006-6033
CVE-2006-6033 affects Simple PHP Blog (SPHPBlog), likely version 0.4.8. It enables directory traversal via a .. sequence in the blog_theme parameter in multiple PHP scripts (index.php, add_cgi.php, add_link.php, login.php, template.php, contact.php), allowing remote attackers to read arbitrary fi...
CVE-2006-6033
Multiple directory traversal vulnerabilities in Simple PHP Blog SPHPBlog, probably 0.4.8, allow remote attackers to read arbitrary files and possibly include arbitrary PHP code via a .. dot dot sequence in the blogtheme parameter in 1 index.php, 2 addcgi.php, 3 addlink.php, 4 login.php, 5...