EDB-4681
webappsphpVERIFIED
ftp Admin 0.1.0 - Local File Inclusion / Cross-Site Scripting / Authentication Bypass
CVE-2007-6234CVE-2007-6233CVE-2007-6232
Omni11/29/2007
CVE-2007-6233
NONEDirectory traversal vulnerability in index.php in FTP Admin 0.1.0 allows remote authenticated users to include and execute arbitrary local files via a .. (dot dot) in the page parameter. NOTE: in som
Publicado: 12/4/2007Actualizado: 4/9/2025
Descripción
Directory traversal vulnerability in index.php in FTP Admin 0.1.0 allows remote authenticated users to include and execute arbitrary local files via a .. (dot dot) in the page parameter. NOTE: in some environments, this can be leveraged for remote file inclusion by using a UNC share pathname or an ftp, ftps, or ssh2.sftp URL.
Análisis IAImpulsado por IA
Productos Afectados
ftp_adminftp_admin
0.1.0