Back to search
CVE-2006-2633
Published: May 30, 2006
Modified: Aug 7, 2024
PUBLISHED
Description
Absolute path traversal vulnerability in the copy action in index.php in Andrew Godwin ByteHoard 2.1 and earlier allows remote authenticated users to create or overwrite files in other users' directories by specifying the absolute path of the directory in the infolder parameter and simultaneously specifying the filename in the filepath parameter.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
ADV-2006-2033
vdb-entry
x_refsource_VUPEN
20060523 ByteHoard <= 2.1 multiple vulnerabilities
mailing-list
x_refsource_BUGTRAQ
http://sourceforge.net/forum/forum.php?forum_id=576219
x_refsource_CONFIRM
18139
vdb-entry
x_refsource_BID
bytehoard-index-directory-traversal(26705)
vdb-entry
x_refsource_XF
20304
third-party-advisory
x_refsource_SECUNIA
968
third-party-advisory
x_refsource_SREASON
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now