CVE-2008-2695
CVE-2008-2695 describes a directory traversal in phpInv 0.8.0: entry.php is vulnerable to a dot-dot (..) in the action parameter, enabling remote attackers to include and execute arbitrary local files. This is a straightforward path traversal risk in the PHP script that processes the action value...