Exploitation Summary
EIP tracks 1 public exploit for CVE-2006-6376. PoCs published by flame.
AI-analyzed exploit summary This is a detailed writeup describing multiple vulnerabilities in Simple File Manager (SFM) v0.24, including arbitrary file read, delete, modify, create, and upload. It provides URLs and HTML forms for exploitation but does not contain executable exploit code.
Description
Multiple directory traversal vulnerabilities in fm.php in Simple File Manager (SFM) 0.24a allow remote attackers to use ".." sequences to (1) read arbitrary files via the filename parameter in a download action, (2) delete arbitrary files via the delete parameter, and (3) modify arbitrary files via the edit parameter, which can be leveraged to execute arbitrary code.
Exploits (1)
This is a detailed writeup describing multiple vulnerabilities in Simple File Manager (SFM) v0.24, including arbitrary file read, delete, modify, create, and upload. It provides URLs and HTML forms for exploitation but does not contain executable exploit code.