Description
PHP 3.x (PHP3) on Apache 1.3.6 allows remote attackers to read arbitrary files via a modified .. (dot dot) attack containing "%5c" (encoded backslash) sequences.
Remediation
References
Related Vulnerabilities
Oracle JRE CVE-2013-0435 Vulnerability (CVE-2013-0435)
WordPress Plugin Profile Builder-User Profile & User Registration Forms Cross-Site Scripting (3.6.1)
PrestaShop Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2011-4545)
WordPress Plugin Zielke Specialized Catalog Arbitrary File Upload (3.0.7)