cpe:/a:phlatline:personal_information_manager:1.01 CVE-2008-4528 2008-10-09T14:14:15.250-04:00 2017-09-28T21:32:12.540-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2008-10-10T10:03:00.000-04:00 ALLOWS_OTHER_ACCESS BID 31571 SREASON 4390 EXPLOIT-DB 6667 XF ppim-notes-file-include(45681) Directory traversal vulnerability in notes.php in Phlatline's Personal Information Manager (pPIM) 1.01 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the id parameter in an edit action.