CVE-2004-2255
Description
Directory traversal in phpMyFAQ 1.3.12 allows remote attackers to read arbitrary files via the action parameter used in template filenames.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Directory traversal in phpMyFAQ 1.3.12 allows remote attackers to read arbitrary files via the action parameter used in template filenames.
Vulnerability
The vulnerability is a directory traversal in phpMyFAQ version 1.3.12. The action variable is used as part of a template filename, allowing an attacker to include path traversal sequences to read arbitrary files on the server [1].
Exploitation
An attacker can exploit this by sending a crafted request with path traversal sequences in the action parameter. No authentication is required as the vulnerability is remotely accessible [1]. The attack vector is HTTP GET request to the phpMyFAQ application.
Impact
Successful exploitation allows remote attackers to read arbitrary files from the server, and potentially execute local PHP files if they can be uploaded or exist in traversable directories. This could lead to information disclosure and possible remote code execution [1].
Mitigation
The vendor released an update; users should upgrade to phpMyFAQ 1.4.0 or later. The Secunia advisory [1] provides details. No other workarounds are mentioned.
AI Insight generated on May 24, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2cpe:2.3:a:phpmyfaq:phpmyfaq:1.3.12:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:phpmyfaq:phpmyfaq:1.3.12:*:*:*:*:*:*:*
- (no CPE)range: <=1.3.12
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
7- secunia.com/advisories/11640nvdPatchVendor Advisory
- www.osvdb.org/6300nvdPatch
- www.securityfocus.com/bid/10374nvdPatch
- archives.neohapsis.com/archives/fulldisclosure/2004-05/0906.htmlnvdVendor Advisory
- www.phpmyfaq.de/advisory_2004-05-18.phpnvdVendor Advisory
- securitytracker.com/idnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/16177nvd
News mentions
0No linked articles in our index yet.