EDB-4705
webappsphpVERIFIED
Flat PHP Board 1.2 - Multiple Vulnerabilities
CVE-2007-6399CVE-2007-6398CVE-2007-6397+2 more
KiNgOfThEwOrLd12/9/2007
CVE-2007-6397
NONEMultiple directory traversal vulnerabilities in index.php in Flat PHP Board 1.2 and earlier allow remote attackers to (1) create arbitrary files via a .. (dot dot) in the username parameter when regis
Опубликовано: 12/17/2007Обновлено: 4/9/2025
Описание
Multiple directory traversal vulnerabilities in index.php in Flat PHP Board 1.2 and earlier allow remote attackers to (1) create arbitrary files via a .. (dot dot) in the username parameter when registering a user account, and (2) read arbitrary PHP files via a .. (dot dot) in (a) the topic parameter in a topic action or (b) the username parameter in a viewprofile action.
ИИ-АнализНа базе ИИ
Затронутые продукты
flat_phpboard
Доступные эксплойты (1)
Ссылки
- http://osvdb.org/43890
- http://osvdb.org/43891
- http://osvdb.org/43892
- http://www.securityfocus.com/archive/1/484803/100/100/threaded
- http://www.securityfocus.com/bid/26782
- https://www.exploit-db.com/exploits/4705
- http://osvdb.org/43890
- http://osvdb.org/43891
- http://osvdb.org/43892
- http://www.securityfocus.com/archive/1/484803/100/100/threaded
- http://www.securityfocus.com/bid/26782
- https://www.exploit-db.com/exploits/4705