Unrated severityNVD Advisory· Published Jan 11, 2011· Updated Jun 16, 2026
CVE-2011-0405
CVE-2011-0405
Description
Directory traversal vulnerability in module.php in PhpGedView 4.2.3 and possibly other versions, when magic_quotes_gpc is disabled, allows remote attackers to read arbitrary files via directory traversal sequences in the pgvaction parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:phpgedview:phpgedview:4.2.3:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:phpgedview:phpgedview:4.2.3:*:*:*:*:*:*:*
- (no CPE)range: =4.2.3
Patches
Vulnerability mechanics
References
8- sourceforge.net/tracker/nvdPatch
- sourceforge.net/projects/phpgedview/forums/forum/185166/topic/4040059nvdExploit
- www.exploit-db.com/exploits/15913nvdExploit
- secunia.com/advisories/42786nvdVendor Advisory
- www.vupen.com/english/advisories/2011/0036nvdVendor Advisory
- osvdb.org/70295nvd
- www.securityfocus.com/bid/45674nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/64733nvd
News mentions
0No linked articles in our index yet.