Description

Directory traversal vulnerability in file.c in PHP 4.4.2 and 5.1.2 allows local users to bypass open_basedir restrictions allows remote attackers to create files in arbitrary directories via the tempnam function.

Remediation

References

CVE-2006-1494

Related Vulnerabilities

WordPress Plugin Nextend Google Connect Unspecified Vulnerability (1.5.3)

WebLogic CVE-2016-0696 Vulnerability (CVE-2016-0696)

Drupal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-13674)

Joomla Permissions, Privileges, and Access Controls Vulnerability (CVE-2006-4475)

WordPress Plugin Simple Download Monitor Multiple Vulnerabilities (3.8.8)

Severity

Low

Classification

CVE-2006-1494

Tags

Missing Update Known Vulnerabilities