Multiple directory traversal vulnerabilities in upfiles/index.php in Pc4 Uploader 10.0 and earlier allow remote attackers to read arbitrary files via (1) a .. (dot dot) or (2) absolute path in the file parameter.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
http://osvdb.org/55314 | |
https://www.exploit-db.com/exploits/8988 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2009-06-23T21:21:00
Updated: 2024-08-07T05:44:55.143Z
Reserved: 2009-06-23T00:00:00
Link: CVE-2009-2180
Vulnrichment
No data.
NVD
Status : Modified
Published: 2009-06-23T21:30:00.453
Modified: 2017-09-29T01:34:45.950
Link: CVE-2009-2180
Redhat
No data.