Description

Directory traversal vulnerability in file.c in PHP 4.4.2 and 5.1.2 allows local users to bypass open_basedir restrictions allows remote attackers to create files in arbitrary directories via the tempnam function.

Remediation

References

CVE-2006-1494

Related Vulnerabilities

WordPress 4.3.x Multiple Vulnerabilities (4.3 - 4.3.17)

WordPress Plugin JW Player for Flash & HTML5 Video Cross-Site Request Forgery (2.1.3)

WordPress Plugin Admin Management Xtended Privilege Escalation (2.4.0)

MediaWiki Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2021-36125)

WordPress Plugin WP-Download 'dl_id' Parameter SQL Injection (1.2)

Severity

Low

Classification

CVE-2006-1494

Tags

Missing Update Known Vulnerabilities