CVE-2008-4425

2008-10-0322:00:00

mitre

www.cve.org

6.7 Medium

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

80.3%

JSON

Directory traversal vulnerability in upload.php in Phlatline’s Personal Information Manager (pPIM) 1.0 allows remote attackers to delete arbitrary files via directory traversal sequences in the file parameter within a delfile action.

References

secunia.com/advisories/31424

securityreason.com/securityalert/4348

www.securityfocus.com/bid/30627

exchange.xforce.ibmcloud.com/vulnerabilities/44386

www.exploit-db.com/exploits/6215