[Forgot Password]
Login  Register Subscribe

23631

 
 

115084

 
 

97147

 
 

909

 
 

78730

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2008-4425

Date: (C)2008-10-03   (M)2017-10-04 


Directory traversal vulnerability in upload.php in Phlatline's Personal Information Manager (pPIM) 1.0 allows remote attackers to delete arbitrary files via directory traversal sequences in the file parameter within a delfile action.

CVSS Score: 8.8Access Vector: NETWORK
Exploit Score: 8.6Access Complexity: MEDIUM
Impact Score: 9.2Authentication: NONE
 Confidentiality: NONE
 Integrity: COMPLETE
 Availability: COMPLETE





Reference:
BID-30627
SECUNIA-31424
SREASON-4348
EXPLOIT-DB-6215
ppim-upload-file-deletion(44386)

CWE    1
CWE-22

© 2013 SecPod Technologies