CVE-2007-6129 (Amber Script) |
|
| BugsAlert Home > CVE-2007-6129 (Amber Script) | |
|
Directory traversal vulnerability in scripts/include/show_content.php in Amber Script 1.0 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the id parameter. NOTE: this can be leveraged for remote file inclusion in PHP 5 using a UNC share pathname, ftp, ftps, or ssh2.sftp URL. Original Source: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-6129 Learn more about CVE-2007-6129 (Amber Script) |
|
| Tags: cve-2007-6129 amber script | |
Related Items |
|
|
Spam Evolution: October 2008
|
|
|
Slackware: python
|
|
|
FrSIRT - Adobe Illustrator CS2 AI File Processing Code Execution Vulnerabilities
|
|
|
FrSIRT - BitDefender Antivirus "NtOpenProcess()" Denial of Service Vulnerability
|
|
|
SurgeMail Webmail "Host" Header Processing Denial of Service
|
|
|
CVE-2008-3180 (contentnow_cms)
|
|
|
Meeting Notes from the Mozilla community: Mozilla Project Meeting Minutes: 2009-01-05
|
|
