CVE-2006-4420

Publication date

2006-08-28 21:00:00

Family

mitre

State

PUBLISHED

Description

Directory traversal vulnerability in include_lang.php in Phaos 0.9.2 allows remote attackers to include arbitrary local files via ".." sequences in the lang parameter.