Unrated severityNVD Advisory· Published Dec 22, 2005· Updated Apr 16, 2026
CVE-2005-4467
CVE-2005-4467
Description
Directory traversal vulnerability in help_text_vars.php in PHPGedView 3.3.7 and earlier allows remote attackers to read and include arbitrary files via a .. (dot dot) in the PGV_BASE_DIRECTORY parameter.
Affected products
9cpe:2.3:a:phpgedview:phpgedview:2.52.3:*:*:*:*:*:*:*+ 8 more
- cpe:2.3:a:phpgedview:phpgedview:2.52.3:*:*:*:*:*:*:*
- cpe:2.3:a:phpgedview:phpgedview:2.60:*:*:*:*:*:*:*
- cpe:2.3:a:phpgedview:phpgedview:2.61:*:*:*:*:*:*:*
- cpe:2.3:a:phpgedview:phpgedview:2.61.1:*:*:*:*:*:*:*
- cpe:2.3:a:phpgedview:phpgedview:2.65:*:*:*:*:*:*:*
- cpe:2.3:a:phpgedview:phpgedview:2.65.1:*:*:*:*:*:*:*
- cpe:2.3:a:phpgedview:phpgedview:2.65.2:*:*:*:*:*:*:*
- cpe:2.3:a:phpgedview:phpgedview:2.65_beta5:*:*:*:*:*:*:*
- cpe:2.3:a:phpgedview:phpgedview:3.3.7:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
10- secunia.com/advisories/18177nvdPatchVendor Advisory
- sourceforge.net/tracker/index.phpnvdPatch
- www.securityfocus.com/bid/15983nvdExploit
- cvs.sourceforge.net/viewcvs.py/phpgedview/phpGedView/help_text_vars.phpnvd
- rgod.altervista.org/phpgedview_337_xpl.htmlnvd
- securitytracker.com/idnvd
- www.osvdb.org/22009nvd
- www.securityfocus.com/archive/1/419906/100/0/threadednvd
- www.vupen.com/english/advisories/2005/3033nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/23871nvd
News mentions
0No linked articles in our index yet.