Vulnerabilities > CVE-2006-7133 - Unspecified vulnerability in PHP Upload Tool PHP Upload Tool 1.0
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN php-upload-tool
exploit available
Summary
Directory traversal vulnerability in upload/bin/download.php in Upload Tool for PHP 1.0 allows remote attackers to read arbitrary files via (1) ".." sequences or (2) absolute pathnames in the filename parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | PHP Upload Tool 1.0 Arbitrary File Upload and Directory Traversal Vulnerabilities. CVE-2006-7133. Webapps exploit for php platform |
id | EDB-ID:29072 |
last seen | 2016-02-03 |
modified | 2006-11-17 |
published | 2006-11-17 |
reporter | Craig Heffner |
source | https://www.exploit-db.com/download/29072/ |
title | PHP Upload Tool 1.0 - Arbitrary File Upload and Directory Traversal Vulnerabilities |