VYPR
Get started
← All advisories
Unrated severityNVD Advisory· Published Feb 12, 2007· Updated Apr 23, 2026

CVE-2007-0893

CVE-2007-0893

Description

Directory traversal vulnerability in phpMyVisites before 2.2 allows remote attackers to include arbitrary files via leading ".." sequences on the pmv_ck_view COOKIE parameter, which bypasses the protection scheme.

Affected products

9
  • Matthieu Aubry/Phpmyvisites9 versions
    cpe:2.3:a:matthieu_aubry:phpmyvisites:*:*:*:*:*:*:*:*+ 8 more
    • cpe:2.3:a:matthieu_aubry:phpmyvisites:*:*:*:*:*:*:*:*range: <=2.1
    • cpe:2.3:a:matthieu_aubry:phpmyvisites:0.1_beta:*:*:*:*:*:*:*
    • cpe:2.3:a:matthieu_aubry:phpmyvisites:1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:matthieu_aubry:phpmyvisites:1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:matthieu_aubry:phpmyvisites:1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:matthieu_aubry:phpmyvisites:1.2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:matthieu_aubry:phpmyvisites:1.2.2:*:*:*:*:*:*:*
    • cpe:2.3:a:matthieu_aubry:phpmyvisites:1.2_beta:*:*:*:*:*:*:*
    • cpe:2.3:a:matthieu_aubry:phpmyvisites:1.3:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

5

News mentions

0

No linked articles in our index yet.