Security Advisory

CVE-2005-4212

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2005-12-14 11:00:00

Last updated 2024-08-07 23:38:51

Assigner mitre

State PUBLISHED

Description

Directory traversal vulnerability in coin_includes/db.php in phpCOIN 1.2.2 allows remote attackers to read arbitrary local files via ".." (dot dot) sequences in the $_CCFG[_PKG_PATH_DBSE] variable.

← Browse all CVEs View on cve.org ↗