QwikSec

Security Database

CVE

CWE

Training

CVE-2005-2686

Published: Aug 24, 2005

Modified: Sep 16, 2024

PUBLISHED

Description

Directory traversal vulnerability in SaveWebPortal 3.4 allows remote attackers to include arbitrary files and execute arbitrary local PHP programs via ".." sequences in the (1) SITE_Path parameter to menu_dx.php or (2) CONTENTS_Dir parameter to menu_sx.php.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://rgod.altervista.org/save_yourself_from_savewebportal34.html

x_refsource_MISC

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.