Directory Traversal Vulnerability in CitrusDB 0.3.6 and Earlier: Arbitrary PHP File Inclusion via Index.php

Directory Traversal Vulnerability in CitrusDB 0.3.6 and Earlier: Arbitrary PHP File Inclusion via Index.php

CVE-2005-0411 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Directory traversal vulnerability in index.php for CitrusDB 0.3.6 and earlier allows remote attackers and local users to include arbitrary PHP files via .. (dot dot) sequences in the load parameter.

Learn more about our User Device Pen Test.