CVE-2006-4636 Information
Feb 14, 2021
cve
Description
Directory traversal vulnerability in SZEWO PhpCommander 3.0 and earlier allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the Directory parameter as demonstrated by parameter values naming Apache HTTP Server log files that apparently contain PHP code.
Reference
http://secunia.com/advisories/21753 http://www.securityfocus.com/bid/19867 http://www.vupen.com/english/advisories/2006/3472 https://www.exploit-db.com/exploits/2310
Share on: