Lucene search
K

11 matches found

OSV
OSV
added 2011/07/14 11:55 p.m.7 views

CVE-2011-2508

Directory traversal vulnerability in libraries/displaytbl.lib.php in phpMyAdmin 3.x before 3.3.10.2 and 3.4.x before 3.4.3.1, when a certain MIME transformation feature is enabled, allows remote authenticated users to include and execute arbitrary local files via a .. dot dot in a...

6.4AI score0.01913EPSS
Exploits4References19
OSV
OSV
added 2011/07/14 11:55 p.m.3 views

DEBIAN-CVE-2011-2508

Directory traversal vulnerability in libraries/displaytbl.lib.php in phpMyAdmin 3.x before 3.3.10.2 and 3.4.x before 3.4.3.1, when a certain MIME transformation feature is enabled, allows remote authenticated users to include and execute arbitrary local files via a .. dot dot in a...

6CVSS7.1AI score0.01913EPSS
Exploits4References1
Prion
Prion
added 2011/07/14 11:55 p.m.17 views

Directory traversal

Directory traversal vulnerability in libraries/displaytbl.lib.php in phpMyAdmin 3.x before 3.3.10.2 and 3.4.x before 3.4.3.1, when a certain MIME transformation feature is enabled, allows remote authenticated users to include and execute arbitrary local files via a .. dot dot in a...

6CVSS7AI score0.01913EPSS
Exploits4References18Affected Software1
UbuntuCve
UbuntuCve
added 2011/07/14 11:55 p.m.32 views

CVE-2011-2508

Directory traversal vulnerability in libraries/displaytbl.lib.php in phpMyAdmin 3.x before 3.3.10.2 and 3.4.x before 3.4.3.1, when a certain MIME transformation feature is enabled, allows remote authenticated users to include and execute arbitrary local files via a .. dot dot in a...

6CVSS6.1AI score0.01913EPSS
Exploits4References1
CVE
CVE
added 2011/07/14 11:0 p.m.75 views

CVE-2011-2508

CVE-2011-2508 affects phpMyAdmin 3.x before 3.3.10.2 and 3.4.x before 3.4.3.1. A directory traversal via a crafted GLOBALS[mime_map][$meta->name][transformation] parameter allows remote authenticated users to perform local file inclusion and potentially execute local files. Root cause: insecur...

6CVSS6.2AI score0.01913EPSS
Exploits4References18Affected Software1
Debian CVE
Debian CVE
added 2011/07/14 11:0 p.m.36 views

CVE-2011-2508

Directory traversal vulnerability in libraries/displaytbl.lib.php in phpMyAdmin 3.x before 3.3.10.2 and 3.4.x before 3.4.3.1, when a certain MIME transformation feature is enabled, allows remote authenticated users to include and execute arbitrary local files via a .. dot dot in a...

6CVSS6.5AI score0.01913EPSS
Exploits4
CVE
CVE
added 2005/12/04 10:0 p.m.88 views

CVE-2004-2630

The CVE-2004-2630 entry affects phpMyAdmin, specifically the MIME transformation system (transformations/text_plain__external.inc.php) in versions 2.5.0 through 2.6.0-pl1. The root cause is a vulnerability in the MIME-based transformation subsystem that lets remote attackers execute arbitrary she...

7.5CVSS7.3AI score0.02926EPSS
Exploits0References10Affected Software1
OSV
OSV
added 2004/12/31 5:0 a.m.3 views

DEBIAN-CVE-2004-2630

The MIME transformation system transformations/textplainexternal.inc.php in phpMyAdmin 2.5.0 up to 2.6.0-pl1 allows remote attackers to execute arbitrary commands via shell metacharacters in unspecified vectors...

7.5CVSS7.5AI score0.02926EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2004/10/19 12:0 a.m.21 views

GLSA-200410-14 : phpMyAdmin: Vulnerability in MIME-based transformation system

The remote host is affected by the vulnerability described in GLSA-200410-14 phpMyAdmin: Vulnerability in MIME-based transformation system A defect was found in phpMyAdmin's MIME-based transformation system, when used with 'external' transformations. Impact : A remote attacker could exploit this...

7.5CVSS5.8AI score0.02926EPSS
Exploits0References4
Gentoo Linux
Gentoo Linux
added 2004/10/18 12:0 a.m.31 views

phpMyAdmin: Vulnerability in MIME-based transformation system

Background phpMyAdmin is a popular web-based MySQL administration tool written in PHP. It allows users to browse and administer a MySQL database from a web-browser. Transformations are a phpMyAdmin feature allowing plug-ins to rewrite the contents of any column seen in phpMyAdmin's Browsing mode,...

7.5CVSS1.7AI score0.02926EPSS
Exploits0
phpMyAdmin
phpMyAdmin
added 2004/10/12 12:0 a.m.41 views

When specifying specially formatted options to external MIME transformation, an attacker can execute any shell command restricted by privileges of httpd user.

PMASA-2004-2 Announcement-ID: PMASA-2004-2 Date: 2004-10-12 Summary When specifying specially formatted options to external MIME transformation, an attacker can execute any shell command restricted by privileges of httpd user. Description phpMyAdmin allows to use MIME transformations for displayi...

7.5CVSS5.9AI score0.02926EPSS
Exploits0Affected Software1
Rows per page
Query Builder