4 matches found
phpPgAdmin sql.php goto Parameter Traversal Arbitrary File Access
It is possible to make the remote phpPgAdmin installation read arbitrary data on the remote host. An attacker could use this flaw to read /etc/passwd or any file that your web server has the right to access. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. Ref:...
CVE-2001-0479
Directory traversal vulnerability in phpPgAdmin 2.2.1 and earlier versions allows remote attackers to execute arbitrary code via a .. dot dot in an argument to the sql.php script...
CVE-2001-0479
Directory traversal vulnerability in phpPgAdmin 2.2.1 and earlier versions allows remote attackers to execute arbitrary code via a .. dot dot in an argument to the sql.php script...
CVE-2001-0479
CVE-2001-0479 affects phpPgAdmin 2.2.1 and earlier. A directory traversal flaw in sql.php (via a .. in an argument) allows remote attackers to execute arbitrary code. The issue is documented across multiple sources (NVD/Nessus/PTSecurity) with verified impact and references. Remediation: upgrade ...