CVE-2006-0244
published 2006-01-18CVE-2006-0244: Directory traversal vulnerability in workspaces.php in phpXplorer 0.9.33 allows remote attackers to include arbitrary files via a .. (dot dot) and trailing…
PriorityP429medium5CVSS 2.0
AVNACLAuNCNIPAN
EXPLOIT
EPSS
3.06%
86.0th percentile
Directory traversal vulnerability in workspaces.php in phpXplorer 0.9.33 allows remote attackers to include arbitrary files via a .. (dot dot) and trailing null byte (%00) in the sShare parameter. NOTE: a followup post claims that this is not a vulnerability since the functionality of phpXplorer supports the upload of PHP files, which would not cross privilege boundaries since the PHP functionality would support read access outside the web root
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| phpxplorer | phpxplorer | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-cfr7-m7j6-q7hh: ** DISPUTED ** Directory traversal vulnerability in workspaces
ghsa_unreviewed·2022-05-01
CVE-2006-0244 [MEDIUM] GHSA-cfr7-m7j6-q7hh: ** DISPUTED ** Directory traversal vulnerability in workspaces
** DISPUTED ** Directory traversal vulnerability in workspaces.php in phpXplorer 0.9.33 allows remote attackers to include arbitrary files via a .. (dot dot) and trailing null byte (%00) in the sShare parameter. NOTE: a followup post claims that this is not a vulnerability since the functionality of phpXplorer supports the upload of PHP files, which would not cross privilege boundaries since the PHP functionality would support read access outside the web root.
GHSA
GHSA-qqvf-34wx-m9pm: Directory traversal vulnerability in action
ghsa_unreviewed·2022-05-01·CVSS 5.0
CVE-2006-0434 [MEDIUM] CWE-22 GHSA-qqvf-34wx-m9pm: Directory traversal vulnerability in action
Directory traversal vulnerability in action.php in phpXplorer allows remote attackers to read arbitrary files via ".." (dot dot) sequences and null bytes in the sAction parameter, a different vulnerability than CVE-2006-0244. NOTE: if the functionality of phpXplorer supports the upload of PHP files, then this issue would not cross privilege boundaries and would not be a vulnerability.
No detection rules found.
No writeups or analysis indexed.
http://secunia.com/advisories/18518http://securityreason.com/securityalert/353http://www.arrelnet.com/advisories/adv20060116.htmlhttp://www.securityfocus.com/archive/1/421997/100/0/threadedhttp://www.securityfocus.com/archive/1/422158/100/0/threadedhttp://www.securityfocus.com/bid/16263http://www.vupen.com/english/advisories/2006/0232https://exchange.xforce.ibmcloud.com/vulnerabilities/39982http://secunia.com/advisories/18518http://securityreason.com/securityalert/353http://www.arrelnet.com/advisories/adv20060116.htmlhttp://www.securityfocus.com/archive/1/421997/100/0/threadedhttp://www.securityfocus.com/archive/1/422158/100/0/threadedhttp://www.securityfocus.com/bid/16263http://www.vupen.com/english/advisories/2006/0232https://exchange.xforce.ibmcloud.com/vulnerabilities/39982
2006-01-18
Published