Mandriva Linux Security Advisory 2010-023 - Directory traversal vulnerability in cmd.php in phpLDAPadmin 1.1.0.5 allows remote attackers to include and execute arbitrary local files via a. (dot dot) in the cmd parameter. The updated packages have been patched to correct this issue.
919ce3ebc0904ce71b5a38ada44d1181671fce8f9905af11dbe72293fda69980
Debian Linux Security Advisory 1965-1 - It was discovered that phpLDAPadmin, a web based interface for administering LDAP servers, doesn't sanitize an internal variable, which allows remote attackers to include and execute arbitrary local files.
a85339f03c4293be88839a1760c0138e7c0532a1fbb3ae72bf620089774830b2