Directory traversal vulnerability in admin/deleteuser.php in HitHost 1.0.0 might allow remote attackers to delete directories (possibly only empty directories) via the $deleteuser variable. NOTE: the initial disclosure for this issue indicated that the researcher was unable to prove this issue; however, this might have been due to certain behaviors of rmdir.
References
Configurations
History
No history.
Information
Published : 2006-03-14 23:02
Updated : 2024-02-28 10:42
NVD link : CVE-2006-1235
Mitre link : CVE-2006-1235
CVE.ORG link : CVE-2006-1235
JSON object : View
Products Affected
david_ravenscroft
- hithost
CWE