CVE-2006-4260 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2006-4260
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-4260

Description: Directory traversal vulnerability in index.php in Fotopholder 1.8 allows remote attackers to read arbitrary directories or files via a .. (dot dot) in the path parameter.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/28399 http://xforce.iss.net/xforce/xfdb/28398 ST 1016702 SREASON http://securityreason.com/securityalert/1421 OSVDB 28243 BUGTRAQ http://archives.neohapsis.com/archives/bugtraq/2006-08/0316.html

Return to the previous page.