CVE-2005-3789

Publication date

2005-11-24 11:00:00

Family

mitre

State

PUBLISHED

Description

Multiple directory traversal vulnerabilities in phpwcms 1.2.5 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) form_lang parameter in login.php and (2) the imgdir parameter in random_image.php.