CVE-2006-6865
The CVE-2006-6865 entry describes a directory traversal in SoftArtisans FileUp (SAFileUp) 5.0.14. An attacker can read arbitrary files by supplying a path parameter containing a Unicode-encoded dot-dot ( %c0%ae ), bypassing the normal ".." sequence checks in SAFileUpSamples/util/viewsrc.asp. The ...