|
|
CVE Reference: CVE-2006-2747 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2006-2747 |
|
|
Description: Directory traversal vulnerability in index.php in PhpMyDesktop|arcade 1.0 FINAL allows remote attackers to read arbitrary files or execute PHP code via a .. (dot dot) sequence and trailing null (%00) byte in the subsite parameter in a showsubsite todo. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/26724 ST 1016180 SREASON http://securityreason.com/securityalert/1009 SAID Secunia Advisory: SA20373 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/435365/100/0/threaded BID 18185 |
|
| Return to the previous page. |
