CVE-2007-0893

Publication date

2007-02-12 23:00:00

Family

mitre

State

PUBLISHED

Description

Directory traversal vulnerability in phpMyVisites before 2.2 allows remote attackers to include arbitrary files via leading ".." sequences on the pmv_ck_view COOKIE parameter, which bypasses the protection scheme.