CVE-2005-2169

UNKNOWN

Directory traversal vulnerability in source

Published Jul 6, 2005

Modified 1 years ago

Details

Directory traversal vulnerability in source.php in Quick & Dirty PHPSource Printer 1.1 and earlier allows remote attackers to read arbitrary files via ".../...//" sequences in the file parameter, which are reduced to "../" when PHPSource Printer uses a regular expression to remove "../" sequences.

References

WEB

http://guff.szub.net/2005/07/04/quick-and-dirty-security/

ADVISORY

http://secunia.com/advisories/15900

WEB

http://securitytracker.com/id?1014376

ADVISORY

https://www.cve.org/CVERecord?id=CVE-2005-2169

CVSS Analysis

CVSS v2.0

5.0