CVE-2005-0630
Summary
sendpm.php in PBLang 4.63 allows remote authenticated users to read arbitrary files via a full pathname in the orig parameter.
- LOW
- LOCAL
- NONE
- NONE
- PARTIAL
- NONE
References
Advisory Timeline
- Published
sendpm.php in PBLang 4.63 allows remote authenticated users to read arbitrary files via a full pathname in the orig parameter.