CVE-2006-7063 Information

Description

Directory traversal vulnerability in profile.php in TinyPHPforum 3.6 and earlier allows remote attackers to include and execute arbitrary files via ..\ sequences in the uname parameter.

Reference

http://www.securityfocus.com/bid/18304 https://exchange.xforce.ibmcloud.com/vulnerabilities/26881 https://www.exploit-db.com/exploits/1857