Directory traversal vulnerability in notes.php in Phlatline's Personal Information Manager (pPIM) 1.01 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the id parameter in an edit action.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
phlatline personal information manager 1.01 |