CVE-2008-4425

EPSS 3.0%

Directory traversal vulnerability in upload.php in Phlatline's Personal Information Manager (pPIM) 1.0 allows remote attackers to delete arbitrary files via directory traversal sequences in the file parameter within a delfile action.

Affected products

n/a · n/a

public PoCs found — 3

cve_referencewww.exploit-db.com/exploits/6215unverified exploitdbwww.exploit-db.com/exploits/8105unverified exploitdbwww.exploit-db.com/exploits/6231unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://secunia.com/advisories/31424 http://securityreason.com/securityalert/4348 https://exchange.xforce.ibmcloud.com/vulnerabilities/44386 https://www.exploit-db.com/exploits/6215 http://www.securityfocus.com/bid/30627