Description

Directory traversal vulnerability in file.c in PHP 4.4.2 and 5.1.2 allows local users to bypass open_basedir restrictions allows remote attackers to create files in arbitrary directories via the tempnam function.

Remediation

References

CVE-2006-1494

Related Vulnerabilities

PrestaShop Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-15081)

WordPress Plugin WP Block and Stop Bad Bots Crawlers and Spiders and Anti Spam Protection-StopBadBots Cross-Site Scripting (6.61)

WordPress Plugin Import all XML, CSV & TXT into WordPress Arbitrary File Disclosure (3.7)

WordPress Plugin Permalink Manager Lite Cross-Site Request Forgery (2.2.20.1)

WordPress Plugin VK All in One Expansion Unit Cross-Site Scripting (9.85.0.1)

Severity

Low

Classification

CVE-2006-1494

Tags

Missing Update Known Vulnerabilities