CVE-2005-4467 in PHPGedView
Summary
by MITRE
Directory traversal vulnerability in help_text_vars.php in PHPGedView 3.3.7 and earlier allows remote attackers to read and include arbitrary files via a .. (dot dot) in the PGV_BASE_DIRECTORY parameter.
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
Analysis
by VulDB Data Team • 10/01/2025
The vulnerability identified as CVE-2005-4467 represents a critical directory traversal flaw within PHPGedView version 3.3.7 and earlier installations. This security weakness resides in the help_text_vars.php script which fails to properly validate user input parameters, specifically the PGV_BASE_DIRECTORY parameter. The flaw enables malicious actors to manipulate file paths through the use of directory traversal sequences such as .. (dot dot) characters, allowing unauthorized access to files outside the intended directory structure. This vulnerability falls under the CWE-22 category of Improper Limitation of a Pathname to a Restricted Directory, commonly known as Path Traversal or Directory Traversal attacks. The issue stems from inadequate input sanitization and validation mechanisms that should have prevented the inclusion of arbitrary file paths in the application's file handling operations.
The operational impact of this vulnerability extends beyond simple information disclosure, as it creates a potential for remote code execution through file inclusion attacks. Attackers can leverage this weakness to access sensitive system files, configuration data, and potentially execute malicious code within the context of the web application. The vulnerability affects the core file handling functionality of PHPGedView, which is a web-based genealogy application designed to manage and display family tree data. When exploited, this flaw allows attackers to bypass normal access controls and retrieve files that should remain restricted, including database connection details, user credentials, and application configuration files. The attack vector is particularly dangerous because it can be executed remotely without requiring authentication, making it an attractive target for automated exploitation tools.
Security professionals should consider this vulnerability in the context of the ATT&CK framework under the technique T1083 - File and Directory Discovery, where adversaries attempt to enumerate file systems to identify sensitive data. The vulnerability also aligns with T1566 - Phishing with Malicious Attachments, as attackers could potentially use this flaw to access application files that might contain sensitive information. Additionally, the flaw demonstrates characteristics of T1059 - Command and Scripting Interpreter, where malicious code execution could occur through the inclusion of arbitrary files. Organizations running affected versions of PHPGedView should prioritize immediate remediation through patch updates, as the vulnerability has been widely documented and exploited in the wild. The implementation of proper input validation and the use of secure coding practices including whitelisting of acceptable file paths would have prevented this vulnerability. Regular security audits and the application of principle of least privilege access controls would further mitigate the risk associated with such directory traversal flaws in web applications.
Mitigation strategies should include immediate patching of all affected PHPGedView installations to versions that have addressed this vulnerability. System administrators should implement input validation mechanisms that filter out directory traversal sequences from all user-supplied parameters. The application should be configured to use absolute paths and implement proper file access controls that prevent access to system directories. Network segmentation and web application firewalls can provide additional layers of protection by monitoring and filtering suspicious requests containing traversal sequences. Regular security assessments should be conducted to identify similar vulnerabilities in other applications and to ensure that proper security controls are in place. The vulnerability also underscores the importance of maintaining up-to-date software versions and implementing robust application security practices including secure coding standards and regular vulnerability scanning procedures.