CVE-2006-4636
SZEWO PhpCommander <3.0 - Path Traversal
Title source: llmDescription
Directory traversal vulnerability in SZEWO PhpCommander 3.0 and earlier allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the Directory parameter, as demonstrated by parameter values naming Apache HTTP Server log files that apparently contain PHP code.
Exploits (1)
Scores
EPSS
0.0669
EPSS Percentile
91.3%
Details
Status
published
Products (1)
szewo/phpcommander
< 3.0
Published
Sep 08, 2006
Tracked Since
Feb 18, 2026