Unrated severityNVD Advisory· Published Jul 13, 2005· Updated Apr 16, 2026
CVE-2005-2255
CVE-2005-2255
Description
Directory traversal vulnerability in PhpAuction 2.5 allows remote attackers to read arbitrary files, include local PHP files, or obtain sensitive path information via ".." sequences in the lan parameter to (1) index.php or (2) admin/index.php.
Affected products
1- cpe:2.3:a:gianluca_baldo:phpauction:2.5:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- securitytracker.com/idnvdExploitVendor Advisory
- secunia.com/advisories/15967nvd
News mentions
0No linked articles in our index yet.