phpPgAdmin < 3.5.4 index.php formLanguage Parameter Traversal Arbitrary File Access

Binary data 3049.prm...

phpPgAdmin 3.x - Login Form Directory Traversal

phpPgAdmin 3.x - Login Form Directory Traversal source: https://www.securityfocus.com/bid/14142/info phpPgAdmin is prone to a directory traversal vulnerability. The application fails to filter directory traversal sequences from requests to the login form. All versions of phpPgAdmin are considered...

phpPgAdmin 3.x - Login Form Directory Traversal

source: https://www.securityfocus.com/bid/14142/info phpPgAdmin is prone to a directory traversal vulnerability. The application fails to filter directory traversal sequences from requests to the login form. All versions of phpPgAdmin are considered to be vulnerable at the moment...

phppgadmin -- "formLanguage" local file inclusion vulnerability

A Secunia Advisory reports: A vulnerability has been reported in phpPgAdmin, which can be exploited by malicious people to disclose sensitive information. Input passed to the "formLanguage" parameter in "index.php" isn't properly verified, before it is used to include files. This can be exploited...

phpPgAdmin sql.php goto Parameter Traversal Arbitrary File Access

It is possible to make the remote phpPgAdmin installation read arbitrary data on the remote host. An attacker could use this flaw to read /etc/passwd or any file that your web server has the right to access. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. Ref:...

Открытый пароль в phpPgAdmin &#40;weak encryption&#41;

Пароль хранится в открытом тексте...

&#40;SRADV00008&#41; Remote command execution vulnerabilities in phpMyAdmin and phpPgAdmin

================================================= Secure Reality Pty Ltd. Security Advisory 8 SRADV00008 http://www.securereality.com.au ================================================= Title Remote command execution vulnerabilities in phpMyAdmin and phpPgAdmin Released 2/7/2001 Vulnerable -...

CVE-2001-0479

Directory traversal vulnerability in phpPgAdmin 2.2.1 and earlier versions allows remote attackers to execute arbitrary code via a .. dot dot in an argument to the sql.php script...

CVE-2001-0479

CVE-2001-0479 affects phpPgAdmin 2.2.1 and earlier. A directory traversal flaw in sql.php (via a .. in an argument) allows remote attackers to execute arbitrary code. The issue is documented across multiple sources (NVD/Nessus/PTSecurity) with verified impact and references. Remediation: upgrade ...

CVE-2001-0479

Directory traversal vulnerability in phpPgAdmin 2.2.1 and earlier versions allows remote attackers to execute arbitrary code via a .. dot dot in an argument to the sql.php script...

PT-2001-1690 · Phppgadmin · Phppgadmin

Name of the Vulnerable Software and Affected Versions: phpPgAdmin versions 2.2.1 and earlier Description: A directory traversal issue in phpPgAdmin allows remote attackers to execute arbitrary code by including a .. dot dot in an argument to the "sql.php" script. Recommendations: For phpPgAdmin...

&#40;SRPRE00001&#41; phpMyAdmin 2.1.0 and phpPgAdmin 2.2.1

================================================= Secure Reality Pty Ltd. Security Pre-Advisory 1 SRPRE00001 http://www.securereality.com.au ================================================= Title Remote command execution vulnerabilities in phpMyAdmin and phpPgAdmin Released 23/4/2001 This is a...