CVE-2011-5219

Publication date

2012-10-25 17:00:00

Family

mitre

State

PUBLISHED

Description

Directory traversal vulnerability in examples/show_code.php in mPDF 5.3 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the filename parameter.