Directory traversal vulnerability in sendphoto.php in WihPhoto 0.86 allows remote attackers to read arbitrary files via .. specifiers in the album parameter, and the target filename in the pic parameter.
References
Link | Resource |
---|---|
http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0092.html | Exploit Patch |
http://www.iss.net/security_center/static/11429.php | |
http://www.securityfocus.com/archive/1/312966 | Exploit Patch |
http://www.securityfocus.com/bid/6929 | Exploit Patch |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2005-11-16T07:37:00
Updated: 2016-11-17T15:57:01
Reserved: 2005-11-16T00:00:00
Link: CVE-2003-1239
JSON object: View
NVD Information
Status : Analyzed
Published: 2003-12-31T05:00:00.000
Modified: 2008-09-05T20:36:24.900
Link: CVE-2003-1239
JSON object: View
Redhat Information
No data.
CWE