CVE: CVE-2004-0127

Export to Word

Directory traversal vulnerability in editconfig_gedcom.php for phpGedView 2.65.1 and earlier allows remote attackers to read arbitrary files or execute arbitrary PHP programs on the server via .. (dot dot) sequences in the gedcom_config parameter.

Threat-Mapped Scoring

Score: 0.0

Priority: Unclassified

EPSS

Score: 0.01334
Percentile: 0.79102

CVSS Scoring

CVSS v2 Score: 7.5

Severity:

Affected Products

cpe:2.3:a:phpgedview:phpgedview:2.52.3:*:*:*:*:*:*:*
cpe:2.3:a:phpgedview:phpgedview:2.60:*:*:*:*:*:*:*
cpe:2.3:a:phpgedview:phpgedview:2.61:*:*:*:*:*:*:*
cpe:2.3:a:phpgedview:phpgedview:2.61.1:*:*:*:*:*:*:*
cpe:2.3:a:phpgedview:phpgedview:2.65:*:*:*:*:*:*:*
cpe:2.3:a:phpgedview:phpgedview:2.65.1:*:*:*:*:*:*:*

← Back to Home