2 matches found
CVE-2006-7133
Directory traversal vulnerability in upload/bin/download.php in Upload Tool for PHP 1.0 allows remote attackers to read arbitrary files via 1 ".." sequences or 2 absolute pathnames in the filename parameter...
CVE-2006-7133
CVE-2006-7133 describes a directory traversal vulnerability in Upload Tool for PHP 1.0, specifically in upload/bin/download.php. Remote attackers can read arbitrary files by manipulating the filename parameter with “..” sequences or absolute pathnames. The vulnerability affects Upload Tool for PH...