Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

178 matches found

AlpineLinux
AlpineLinuxadded 2016/12/11 2:0 a.m.33 views

CVE-2016-9855

An issue was discovered in phpMyAdmin. By calling some scripts that are part of phpMyAdmin in an unexpected way, it is possible to trigger phpMyAdmin to display a PHP error message which contains the full path of the directory where phpMyAdmin is installed. During an execution timeout in the expo...

5.3CVSS5.6AI score0.00501EPSS
Exploits0
Debian CVE
Debian CVEadded 2016/12/11 2:0 a.m.36 views

CVE-2016-9852

An issue was discovered in phpMyAdmin. By calling some scripts that are part of phpMyAdmin in an unexpected way, it is possible to trigger phpMyAdmin to display a PHP error message which contains the full path of the directory where phpMyAdmin is installed. During an execution timeout in the expo...

5.3CVSS5.6AI score0.00501EPSS
Exploits0
Cvelist
Cvelistadded 2016/12/11 2:0 a.m.17 views

CVE-2016-9852

An issue was discovered in phpMyAdmin. By calling some scripts that are part of phpMyAdmin in an unexpected way, it is possible to trigger phpMyAdmin to display a PHP error message which contains the full path of the directory where phpMyAdmin is installed. During an execution timeout in the expo...

5.5AI score0.00501EPSS
Exploits0References3
OpenVAS
OpenVASadded 2016/02/08 12:0 a.m.26 views

Mageia: Security Advisory (MGASA-2016-0051)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.5AI score0.01204EPSS
Exploits0References12
Tenable Nessus
Tenable Nessusadded 2016/01/29 12:0 a.m.39 views

FreeBSD : phpmyadmin -- Full path disclosure vulnerability in SQL parser (78b4ebfb-c60b-11e5-bf36-6805ca0b3d42)

The phpMyAdmin development team reports : By calling a particular script that is part of phpMyAdmin in an unexpected way, it is possible to trigger phpMyAdmin to display a PHP error message which contains the full path of the directory where phpMyAdmin is installed. We consider this vulnerability...

5.3CVSS6.3AI score0.00437EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2016/01/29 12:0 a.m.24 views

FreeBSD : phpmyadmin -- Multiple full path disclosure vulnerabilities (740badcb-c60b-11e5-bf36-6805ca0b3d42)

The phpMyAdmin development team reports : By calling some scripts that are part of phpMyAdmin in an unexpected way, it is possible to trigger phpMyAdmin to display a PHP error message which contains the full path of the directory where phpMyAdmin is installed. We consider these vulnerabilities to...

5.3CVSS6.4AI score0.00577EPSS
Exploits0References3
FreeBSD
FreeBSDadded 2016/01/28 12:0 a.m.58 views

phpmyadmin -- Multiple full path disclosure vulnerabilities

The phpMyAdmin development team reports: By calling some scripts that are part of phpMyAdmin in an unexpected way, it is possible to trigger phpMyAdmin to display a PHP error message which contains the full path of the directory where phpMyAdmin is installed. We consider these vulnerabilities to ...

5.3CVSS1.4AI score0.01204EPSS
Exploits0References1
Typo3
Typo3added 2015/09/30 12:0 a.m.17 views

Information Disclosure in extension "LDAP" (eu_ldap)

It has been discovered that the extension "LDAP" euldap is susceptible to Information Disclosure. Release Date: September 30, 2015 Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: version 2.8.18 and below Vulnerability Type:...

6.8AI score
Exploits0Affected Software1
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.29 views

netclassifieds (sql/xss/full path) Multiple Vulnerabilities

No description provided by source. Application: NetClassifieds: -Free Edition -Standard Edition -Professional Edition -Premium Edition Web Site: http://www.scriptdevelopers.net/ Versions: all Platform: linux, windows Bug: multiple injection sql , xss , full path Fix Available: Yes...

7.1AI score
Exploits0
Mageia
Mageiaadded 2013/07/29 2:6 p.m.40 views

Updated phpmyadmin packages fix security vulnerabilities

Using a crafted SQL query, it was possible to produce an XSS on the SQL query form PMASA-2013-8CVE-2013-4995. In the setup/index.php, using a crafted hash with a Javascript event, untrusted JS code could be executed. In the Display chart view, a chart title containing HTML code was rendered...

6.5CVSS0.7AI score0.00374EPSS
Exploits0References7
phpMyAdmin
phpMyAdminadded 2013/07/28 12:0 a.m.28 views

Full path disclosure vulnerabilities.

PMASA-2013-12 Announcement-ID: PMASA-2013-12 Date: 2013-07-28 Updated: 2013-07-30 Summary Full path disclosure vulnerabilities. Description By calling some scripts that are part of phpMyAdmin in an unexpected way, it is possible to trigger phpMyAdmin to display a PHP error message which contains...

6.7AI score
Exploits0Affected Software1
UbuntuCve
UbuntuCveadded 2012/11/20 12:55 a.m.23 views

CVE-2012-3354

doku.php in DokuWiki, as used in Fedora 16, 17, and 18, when certain PHP error levels are set, allows remote attackers to obtain sensitive information via the prefix parameter, which reveals the installation path in an error message...

4.3CVSS5.9AI score0.00662EPSS
Exploits0References2
NVD
NVDadded 2012/11/20 12:55 a.m.16 views

CVE-2012-3354

doku.php in DokuWiki, as used in Fedora 16, 17, and 18, when certain PHP error levels are set, allows remote attackers to obtain sensitive information via the prefix parameter, which reveals the installation path in an error message...

4.3CVSS6.1AI score0.00662EPSS
Exploits0References8
Prion
Prionadded 2012/11/20 12:55 a.m.22 views

Design/Logic Flaw

doku.php in DokuWiki, as used in Fedora 16, 17, and 18, when certain PHP error levels are set, allows remote attackers to obtain sensitive information via the prefix parameter, which reveals the installation path in an error message...

4.3CVSS6.6AI score0.00662EPSS
Exploits0References8Affected Software1
OSV
OSVadded 2012/11/20 12:55 a.m.5 views

CVE-2012-3354

doku.php in DokuWiki, as used in Fedora 16, 17, and 18, when certain PHP error levels are set, allows remote attackers to obtain sensitive information via the prefix parameter, which reveals the installation path in an error message...

6.4AI score
Exploits0References8
CVE
CVEadded 2012/11/20 12:0 a.m.61 views

CVE-2012-3354

DokuWiki (Dokuwiki) vulnerability CVE-2012-3354 affects the dokuwiki component used in Fedora 16–18. When PHP error reporting is enabled, the prefix parameter can trigger a full path disclosure via an error message, exposing installation paths. Root cause: the sanitization of HTTP POST value for ...

4.3CVSS6.1AI score0.00662EPSS
Exploits0References8Affected Software2
Cvelist
Cvelistadded 2012/11/20 12:0 a.m.21 views

CVE-2012-3354

doku.php in DokuWiki, as used in Fedora 16, 17, and 18, when certain PHP error levels are set, allows remote attackers to obtain sensitive information via the prefix parameter, which reveals the installation path in an error message...

6AI score0.00662EPSS
Exploits0References8
exploitpack
exploitpackadded 2012/10/22 12:0 a.m.19 views

WordPress Plugin social discussions 6.1.1 - Multiple Vulnerabilities

WordPress Plugin social discussions 6.1.1 - Multiple Vulnerabilities waraxe-2012-SA093 - Multiple Vulnerabilities in Wordpress Social Discussions Plugin ====================================================================================== Author: Janek Vind "waraxe" Date: 17. October 2012...

0.4AI score
Exploits0
Vulnerability Lab
Vulnerability Labadded 2011/12/04 12:0 a.m.15 views

Facebook Chartity (TAG) - SQL Injection Vulnerability

Document Title: =============== Facebook Chartity TAG - SQL Injection Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=336 Release Date: ============= 2011-12-04 Vulnerability Laboratory ID VL-ID: ==================================== 336...

7.1AI score
Exploits0
Vulnerability Lab
Vulnerability Labadded 2011/12/04 12:0 a.m.12 views

Facebook Chartity (TAG) - SQL Injection Vulnerability

Document Title: =============== Facebook Chartity TAG - SQL Injection Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=336 Release Date: ============= 2011-12-04 Vulnerability Laboratory ID VL-ID: ==================================== 336...

0.2AI score
Exploits0
Rows per page
Query Builder