2008-10-09 18:00:00
mitre
PUBLISHED
Directory traversal vulnerability in notes.php in Phlatlines Personal Information Manager (pPIM) 1.01 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the id parameter in an edit action.