CVE-2006-0169 Information
Feb 14, 2021
cve
Description
addresses.php3 in MyPhPim 01.05 does not restrict uploaded files which allows remote attackers to execute arbitrary PHP code via the pdbfile variable then directly accessing those files from the uploads directory.
Reference
http://evuln.com/vulns/23/summary.html http://secunia.com/advisories/18399 http://www.securityfocus.com/archive/1/421626/100/0/threaded http://www.securityfocus.com/bid/16208 http://www.vupen.com/english/advisories/2006/0147 https://exchange.xforce.ibmcloud.com/vulnerabilities/24070
Share on: