Описание
Directory traversal vulnerability in libraries/lib.inc.php in phpPgAdmin 4.2.1 and earlier, when register_globals is enabled, allows remote attackers to read arbitrary files via a .. (dot dot) in the _language parameter to index.php.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | not-affected | 4.2.1-1.1 |
| gutsy | ignored | end of life, was needed |
| hardy | ignored | end of life |
| intrepid | ignored | end of life, was needed |
| jaunty | not-affected | 4.2.1-1.1 |
| karmic | not-affected | 4.2.1-1.1 |
| lucid | not-affected | 4.2.1-1.1 |
| maverick | not-affected | 4.2.1-1.1 |
| natty | not-affected | 4.2.1-1.1 |
Показывать по
EPSS
4.3 Medium
CVSS2
Связанные уязвимости
Directory traversal vulnerability in libraries/lib.inc.php in phpPgAdmin 4.2.1 and earlier, when register_globals is enabled, allows remote attackers to read arbitrary files via a .. (dot dot) in the _language parameter to index.php.
Directory traversal vulnerability in libraries/lib.inc.php in phpPgAdm ...
Directory traversal vulnerability in libraries/lib.inc.php in phpPgAdmin 4.2.1 and earlier, when register_globals is enabled, allows remote attackers to read arbitrary files via a .. (dot dot) in the _language parameter to index.php.
EPSS
4.3 Medium
CVSS2