CVE-2008-4528

2008-10-09T18:14:00
ID CVE-2008-4528
Type cve
Reporter cve@mitre.org
Modified 2017-09-29T01:32:00

Description

Directory traversal vulnerability in notes.php in Phlatline's Personal Information Manager (pPIM) 1.01 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the id parameter in an edit action.