Bugada Andrea : Security Vulnerabilities, CVEs, Published In 2007
Directory traversal vulnerability in index.php in PHP Advanced Transfer Manager (phpATM) 1.30 allows remote attackers to read arbitrary files and obtain script source code via a .. (dot dot) in the directory parameter in a downloadfile action.
Max CVSS
5.0
EPSS Score
2.00%
Published
2007-05-14
Updated
2017-10-11
1 vulnerabilities found