CVE Vulnerabilities

CVE-2006-0445

Published: Jan 26, 2006 | Modified: Oct 19, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4 MEDIUM
AV:N/AC:L/Au:S/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

index.php in Phpclanwebsite 1.23.1 allows remote authenticated users to obtain the installation path by specifying an invalid file name to the uploader page, as demonstrated by , which will display the full path of uploader.php. NOTE: this might be the result of a file inclusion vulnerability.

Affected Software

Name Vendor Start Version End Version
Phpclanwebsite Phpclanwebsite 1.23.1 1.23.1

References