Multiple directory traversal vulnerabilities in PHP Advanced Transfer Manager 1.30 allow remote attackers to read arbitrary files via ".." sequences in (1) the currentdir parameter to txt.php, or the current_dir parameter to (2) htm.php or (3) html.php.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2005-09-20T04:00:00Z

Updated: 2024-09-16T22:30:13.192Z

Reserved: 2005-09-20T00:00:00Z

Link: CVE-2005-2997

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2005-09-20T22:03:00.000

Modified: 2024-11-21T00:00:53.843

Link: CVE-2005-2997

cve-icon Redhat

No data.