Vulnerabilities > CVE-2006-7133 - Unspecified vulnerability in PHP Upload Tool PHP Upload Tool 1.0

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
php-upload-tool
exploit available

Summary

Directory traversal vulnerability in upload/bin/download.php in Upload Tool for PHP 1.0 allows remote attackers to read arbitrary files via (1) ".." sequences or (2) absolute pathnames in the filename parameter.

Vulnerable Configurations

Part Description Count
Application
Php_Upload_Tool
1

Exploit-Db

descriptionPHP Upload Tool 1.0 Arbitrary File Upload and Directory Traversal Vulnerabilities. CVE-2006-7133. Webapps exploit for php platform
idEDB-ID:29072
last seen2016-02-03
modified2006-11-17
published2006-11-17
reporterCraig Heffner
sourcehttps://www.exploit-db.com/download/29072/
titlePHP Upload Tool 1.0 - Arbitrary File Upload and Directory Traversal Vulnerabilities