Unrated severityNVD Advisory· Published Jan 26, 2006· Updated Jun 16, 2026
CVE-2006-0445
CVE-2006-0445
Description
index.php in Phpclanwebsite 1.23.1 allows remote authenticated users to obtain the installation path by specifying an invalid file name to the uploader page, as demonstrated by "\", which will display the full path of uploader.php. NOTE: this might be the result of a file inclusion vulnerability.
Affected products
2cpe:2.3:a:phpclanwebsite:phpclanwebsite:1.23.1:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:phpclanwebsite:phpclanwebsite:1.23.1:*:*:*:*:*:*:*
- (no CPE)range: =1.23.1
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.