Unrated severityNVD Advisory· Published Aug 17, 2005· Updated Jun 16, 2026
CVE-2005-2607
CVE-2005-2607
Description
PHP file include vulnerability in download.php in PHPSimplicity Simplicity oF Upload before 1.3.1 allows remote attackers to include arbitrary local and remote files via the language parameter and a terminating null ("%00") characters.
Affected products
2cpe:2.3:a:phpsimplicity:simplicity_of_upload:1.3:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:phpsimplicity:simplicity_of_upload:1.3:*:*:*:*:*:*:*
- (no CPE)range: <1.3.1
Patches
Vulnerability mechanics
References
5- www.phpsimplicity.com/scripts.phpnvdPatch
- www.securityfocus.com/bid/14424nvdPatch
- rgod.altervista.org/simply.htmlnvdExploit
- securitytracker.com/idnvdExploit
- secunia.com/advisories/16273nvd
News mentions
0No linked articles in our index yet.