Description
Directory traversal vulnerability in the (1) rmdir or (2) mkdir commands in upload.php in YaPiG 0.92b, 0.93u and 0.94u allows remote attackers to create or delete arbitrary directories via a .. (dot dot) in the dir parameter.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by anonymous · textwebappsphp
https://www.exploit-db.com/exploits/25794
References (5)
Core 5
Core References
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/15600/
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/17120
Exploit, Vendor Advisory x_refsource_misc
http://secwatch.org/advisories/secwatch/20050530_yapig.txt
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/13877
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1014103
Scores
EPSS
0.0400
EPSS Percentile
88.5%
Details
Status
published
Products (3)
yapig/yapig
0.92b
yapig/yapig
0.93u
yapig/yapig
0.94u
Published
Jun 09, 2005
Tracked Since
Feb 18, 2026