Gianluca Baldo : Security Vulnerabilities, CVEs, Published In 2005 (Directory traversal)
Directory traversal vulnerability in PhpAuction 2.5 allows remote attackers to read arbitrary files, include local PHP files, or obtain sensitive path information via ".." sequences in the lan parameter to (1) index.php or (2) admin/index.php.
Max CVSS
6.4
EPSS Score
0.40%
Published
2005-07-13
Updated
2008-09-05
1 vulnerabilities found