CVE-2006-2326 Information

Description

Directory traversal vulnerability in index.php in OnlyScript.info Online Universal Payment System Script allows remote attackers to read arbitrary files via directory traversal sequences in the read parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Reference

http://secunia.com/advisories/20005 http://www.osvdb.org/25451 http://www.securityfocus.com/bid/17889 http://www.vupen.com/english/advisories/2006/1704 https://exchange.xforce.ibmcloud.com/vulnerabilities/26341