CVE-2006-1224

N/A Unknown

Published: March 14, 2006 Modified: April 16, 2026

Description

Directory traversal vulnerability in dwnld.php in GuppY 4.5.11 allows remote attackers to overwrite arbitrary files via a "%2E." (mixed encoding) in the pg parameter.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://secunia.com/advisories/19222

Source: cve@mitre.org

Exploit Patch Vendor Advisory

http://securityreason.com/securityalert/569

Source: cve@mitre.org

http://securitytracker.com/id?1015753

Source: cve@mitre.org

Exploit Patch Vendor Advisory

http://www.freeguppy.org/?lng=en

Source: cve@mitre.org

Patch

http://www.kapda.ir/advisory-291.html

Source: cve@mitre.org

Exploit Patch Vendor Advisory

http://www.osvdb.org/23846

Source: cve@mitre.org

http://www.osvdb.org/23993

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/427329/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/17068

Source: cve@mitre.org

Exploit Patch

http://www.vupen.com/english/advisories/2006/0936

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/25141

Source: cve@mitre.org

http://secunia.com/advisories/19222