CVE-2007-5454 Information

Description

Directory traversal vulnerability in index.php in PHP File Sharing System 1.5.1 allows remote attackers to list or create arbitrary directories or delete arbitrary files as demonstrated by listing directories via a .. (dot dot) in the cam parameter.

Reference

http://archives.neohapsis.com/archives/fulldisclosure/2007-10/0343.html http://secunia.com/advisories/27257 http://www.securityfocus.com/bid/26065 https://exchange.xforce.ibmcloud.com/vulnerabilities/37193