CyberSec.Space Logo
返回 CVE 浏览器

CVE-2008-4425

HIGH
8.8
CVSS Severity Score
EPSS Score0.1140%
EPSS Percentile35.65th
Published2008年10月3日
Last Modified2026年4月23日

Vulnerability Description

Directory traversal vulnerability in upload.php in Phlatline's Personal Information Manager (pPIM) 1.0 allows remote attackers to delete arbitrary files via directory traversal sequences in the file parameter within a delfile action.

Affected Platforms (CPE)

📦
Phlatline

Personal Information Manager

= 1.0

References & Advisories

🔗 http://secunia.com/advisories/31424
🔗 http://securityreason.com/securityalert/4348
🔗 http://www.securityfocus.com/bid/30627
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/44386
🔗 https://www.exploit-db.com/exploits/6215
🔗 http://secunia.com/advisories/31424
🔗 http://securityreason.com/securityalert/4348
🔗 http://www.securityfocus.com/bid/30627

相关漏洞威胁

CVE-2008-442810.0

Unrestricted file upload vulnerability in upload.php in Phlatline's Personal Information Manager (pPIM) 1.0 and earlier allows rem...

CVE-2019-111969.8

An authentication bypass vulnerability in all versions of ValuePLUS Integrated University Management System (IUMS) allows unauthen...

CVE-2016-06358.8

Unspecified vulnerability in the Enterprise Manager Ops Center component in Oracle Enterprise Manager Grid Control 12.1.4, 12.2.2,...

CVE-2025-119598.1

Files or Directories Accessible to External Parties, Exposure of Private Personal Information to an Unauthorized Actor vulnerabili...