Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2016-9852

Опубликовано: 11 дек. 2016
Источник: ubuntu
Приоритет: low
EPSS Низкий
CVSS2: 5
CVSS3: 5.3

Описание

An issue was discovered in phpMyAdmin. By calling some scripts that are part of phpMyAdmin in an unexpected way, it is possible to trigger phpMyAdmin to display a PHP error message which contains the full path of the directory where phpMyAdmin is installed. During an execution timeout in the export functionality, the errors containing the full path of the directory of phpMyAdmin are written to the export file. All 4.6.x versions (prior to 4.6.5), and 4.4.x versions (prior to 4.4.15.9) are affected. This CVE is for the curl wrapper issue.

РелизСтатусПримечание
artful

not-affected

4:4.6.5.1-1
bionic

not-affected

4:4.6.5.1-1
cosmic

not-affected

4:4.6.5.1-1
devel

not-affected

4:4.6.5.1-1
disco

not-affected

4:4.6.5.1-1
eoan

DNE

esm-apps/bionic

not-affected

4:4.6.5.1-1
esm-apps/focal

not-affected

4:4.6.5.1-1
esm-apps/jammy

not-affected

4:4.6.5.1-1
esm-apps/noble

not-affected

4:4.6.5.1-1

Показывать по

Ссылки на источники

EPSS

Процентиль: 62%
0.00432
Низкий

5 Medium

CVSS2

5.3 Medium

CVSS3

Связанные уязвимости

nvd логотип

CVE-2016-9852

CVSS3: 5.3
nvd
больше 8 лет назад

An issue was discovered in phpMyAdmin. By calling some scripts that are part of phpMyAdmin in an unexpected way, it is possible to trigger phpMyAdmin to display a PHP error message which contains the full path of the directory where phpMyAdmin is installed. During an execution timeout in the export functionality, the errors containing the full path of the directory of phpMyAdmin are written to the export file. All 4.6.x versions (prior to 4.6.5), and 4.4.x versions (prior to 4.4.15.9) are affected. This CVE is for the curl wrapper issue.

debian логотип

CVE-2016-9852

CVSS3: 5.3
debian
больше 8 лет назад

An issue was discovered in phpMyAdmin. By calling some scripts that ar ...

github логотип

GHSA-r2fq-59w2-3vq4

CVSS3: 5.3
github
около 3 лет назад

An issue was discovered in phpMyAdmin. By calling some scripts that are part of phpMyAdmin in an unexpected way, it is possible to trigger phpMyAdmin to display a PHP error message which contains the full path of the directory where phpMyAdmin is installed. During an execution timeout in the export functionality, the errors containing the full path of the directory of phpMyAdmin are written to the export file. All 4.6.x versions (prior to 4.6.5), and 4.4.x versions (prior to 4.4.15.9) are affected. This CVE is for the curl wrapper issue.

EPSS

Процентиль: 62%
0.00432
Низкий

5 Medium

CVSS2

5.3 Medium

CVSS3