Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2008-4096

Опубликовано: 18 сент. 2008
Источник: ubuntu
Приоритет: medium
EPSS Средний
CVSS2: 8.5

Описание

libraries/database_interface.lib.php in phpMyAdmin before 2.11.9.1 allows remote authenticated users to execute arbitrary code via a request to server_databases.php with a sort_by parameter containing PHP sequences, which are processed by create_function.

РелизСтатусПримечание
dapper

ignored

end of life
devel

not-affected

4:3.1.2-1
feisty

ignored

end of life, was needs-triage
gutsy

ignored

end of life, was needs-triage
hardy

released

4:2.11.3-1ubuntu1.2
intrepid

released

4:2.11.8.1-1ubuntu0.1
jaunty

not-affected

4:3.1.2-1
karmic

not-affected

4:3.1.2-1
upstream

released

2.11.9.1

Показывать по

Ссылки на источники

EPSS

Процентиль: 94%
0.12617
Средний

8.5 High

CVSS2

Связанные уязвимости

nvd логотип

CVE-2008-4096

nvd
почти 17 лет назад

libraries/database_interface.lib.php in phpMyAdmin before 2.11.9.1 allows remote authenticated users to execute arbitrary code via a request to server_databases.php with a sort_by parameter containing PHP sequences, which are processed by create_function.

debian логотип

CVE-2008-4096

debian
почти 17 лет назад

libraries/database_interface.lib.php in phpMyAdmin before 2.11.9.1 all ...

github логотип

GHSA-j99q-43xw-28f9

github
около 3 лет назад

libraries/database_interface.lib.php in phpMyAdmin before 2.11.9.1 allows remote authenticated users to execute arbitrary code via a request to server_databases.php with a sort_by parameter containing PHP sequences, which are processed by create_function.

EPSS

Процентиль: 94%
0.12617
Средний

8.5 High

CVSS2