Unrated severityNVD Advisory· Published Sep 20, 2005· Updated Jun 16, 2026
CVE-2005-2997
CVE-2005-2997
Description
Multiple directory traversal vulnerabilities in PHP Advanced Transfer Manager 1.30 allow remote attackers to read arbitrary files via ".." sequences in (1) the currentdir parameter to txt.php, or the current_dir parameter to (2) htm.php or (3) html.php.
Affected products
2- cpe:2.3:a:bugada_andrea:php_advanced_transfer_manager:1.30:*:*:*:*:*:*:*
- Range: = 1.30
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.