CVE-2006-5604 Information

Description

Directory traversal vulnerability in phpcards.header.php in phpCards 1.3 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the CardLanguageFile parameter.

Reference

http://securitytracker.com/id?1017070 https://exchange.xforce.ibmcloud.com/vulnerabilities/29615