Описание
phpMyAdmin 4.4.x before 4.4.15.3 and 4.5.x before 4.5.4 allows remote attackers to obtain sensitive information via a crafted request to (1) libraries/phpseclib/Crypt/AES.php or (2) libraries/phpseclib/Crypt/Rijndael.php, which reveals the full path in an error message.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | not-affected | 4:4.5.4-1 |
| bionic | not-affected | 4:4.5.4-1 |
| cosmic | not-affected | 4:4.5.4-1 |
| devel | not-affected | 4:4.5.4-1 |
| disco | not-affected | 4:4.5.4-1 |
| eoan | DNE | |
| esm-apps/bionic | not-affected | 4:4.5.4-1 |
| esm-apps/focal | not-affected | 4:4.5.4-1 |
| esm-apps/jammy | not-affected | 4:4.5.4-1 |
| esm-apps/noble | not-affected | 4:4.5.4-1 |
Показывать по
5 Medium
CVSS2
5.3 Medium
CVSS3
Связанные уязвимости
phpMyAdmin 4.4.x before 4.4.15.3 and 4.5.x before 4.5.4 allows remote attackers to obtain sensitive information via a crafted request to (1) libraries/phpseclib/Crypt/AES.php or (2) libraries/phpseclib/Crypt/Rijndael.php, which reveals the full path in an error message.
phpMyAdmin 4.4.x before 4.4.15.3 and 4.5.x before 4.5.4 allows remote attackers to obtain sensitive information via a crafted request to (1) libraries/phpseclib/Crypt/AES.php or (2) libraries/phpseclib/Crypt/Rijndael.php, which reveals the full path in an error message.
phpMyAdmin 4.4.x before 4.4.15.3 and 4.5.x before 4.5.4 allows remote ...
phpMyAdmin 4.4.x before 4.4.15.3 and 4.5.x before 4.5.4 allows remote attackers to obtain sensitive information via a crafted request to (1) libraries/phpseclib/Crypt/AES.php or (2) libraries/phpseclib/Crypt/Rijndael.php, which reveals the full path in an error message.
5 Medium
CVSS2
5.3 Medium
CVSS3