3 matches found
CVE-2005-0411
CVE-2005-0411 affects CitrusDB up to version 0.3.6 (and earlier). The vulnerability is a directory-traversal in index.php where the GET parameter load can include arbitrary local PHP files via .. sequences, enabling remote attackers and local users to include PHP files. The issue is documented wi...
CVE-2005-0411
Directory traversal vulnerability in index.php for CitrusDB 0.3.6 and earlier allows remote attackers and local users to include arbitrary PHP files via .. dot dot sequences in the load parameter...
CVE-2005-0411
Directory traversal vulnerability in index.php for CitrusDB 0.3.6 and earlier allows remote attackers and local users to include arbitrary PHP files via .. dot dot sequences in the load parameter...