### [CVE-2004-0066](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0066)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

phpGedView before 2.65 allows remote attackers to obtain the absolute path of the web server via malformed parameters to (1) indilist.php, (2) famlist.php, (3) placelist.php, (4) imageview.php, (5) timeline.php, (6) clippings.php, (7) login.php, and (8) gdbi.php.

### POC

#### Reference
- http://marc.info/?l=bugtraq&m=107394912715478&w=2

#### Github
No PoCs found on GitHub currently.