Directory traversal vulnerability in phpMyVisites before 2.2 allows remote attackers to include arbitrary files via leading “…” sequences on the pmv_ck_view COOKIE parameter, which bypasses the protection scheme.
CPE | Name | Operator | Version |
---|---|---|---|
phpmyvisites | eq | 1.2.2 | |
phpmyvisites | eq | 1.0 | |
phpmyvisites | eq | 1.3 | |
phpmyvisites | eq | 1.2.0-beta | |
phpmyvisites | eq | 0.1.0-beta | |
phpmyvisites | eq | 1.2.1 | |
phpmyvisites | eq | 1.1 | |
phpmyvisites | eq | 1.2 | |
phpmyvisites | le | 2.1 |