Security Advisory

CVE-2006-0445

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2006-01-26 22:00:00

Last updated 2024-08-07 16:34:14

Assigner mitre

State PUBLISHED

Description

index.php in Phpclanwebsite 1.23.1 allows remote authenticated users to obtain the installation path by specifying an invalid file name to the uploader page, as demonstrated by "", which will display the full path of uploader.php. NOTE: this might be the result of a file inclusion vulnerability.

← Browse all CVEs View on cve.org ↗