CVE-2007-0893

2007-02-1223:00:00

mitre

www.cve.org

6.8 Medium

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

78.9%

JSON

Directory traversal vulnerability in phpMyVisites before 2.2 allows remote attackers to include arbitrary files via leading “…” sequences on the pmv_ck_view COOKIE parameter, which bypasses the protection scheme.

References

marc.info/?l=full-disclosure&m=117121596803908&w=2

osvdb.org/33178

www.securityfocus.com/archive/1/459792/100/0/threaded

www.securityfocus.com/bid/22516

exchange.xforce.ibmcloud.com/vulnerabilities/32433