CVE-2005-3947

PHP Upload Center - Path Traversal

Title source: llm

Description

Directory traversal vulnerability in index.php in PHP Upload Center allows remote attackers to read arbitrary files via "../" sequences in the filename parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by liz0 · textwebappsphp

https://www.exploit-db.com/exploits/26646

View Code ZIP pw:eip

References (5)

Core 5

Core References

Exploit vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/15626

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/24696

Exploit, URL Repurposed x_refsource_misc

http://www.blogcu.com/Liz0ziM/126975

Exploit x_refsource_misc

http://liz0.3yr.net/phpuploadcenter.txt

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/15621

Scores

EPSS 0.0400

EPSS Percentile 88.5%

Details

Status published

Published Dec 01, 2005

Tracked Since Feb 18, 2026