NuytsTech Security

CVE-2005-2169

by ·

Directory traversal vulnerability in source.php in Quick & Dirty PHPSource Printer 1.1 and earlier allows remote attackers to read arbitrary files via "…/…//" sequences in the file parameter, which are reduced to "../" when PHPSource Printer uses a regular expression to remove "../" sequences.

Date published : 2005-07-06

http://guff.szub.net/2005/07/04/quick-and-dirty-security/

http://securitytracker.com/id?1014376

Tags: