CVE-2004-0129

Directory traversal vulnerability in export.php in phpMyAdmin 2.5.5 and earlier allows remote attackers to read arbitrary files via .. dot dot sequences in the what parameter...

file disclosure in phpMyAdmin

Lack of proper input validation in phpMyAdmin may allow an attacker to obtain the contents of any file on the target system that is readable by the web server...

Arbitrary File Disclosure Vulnerability in phpMyAdmin 2.5.5-pl1 and prior

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Arbitrary File Disclosure Vulnerability in phpMyAdmin 2.5.5-pl1 and prior Summary : phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the WWW. There is a vulnerability in the current stable version of phpMyAdmin...

phpMyAdmin sql.php Traversal Arbitrary File Access

It is possible to make the remote phpMyAdmin installation read arbitrary data on the remote host. An attacker may use this flaw to read arbitrary files that your web server has the right to access or execute arbitrary PHP code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. Ref:...

CVE-2001-1060

phpMyAdmin 2.2.0rc3 and earlier is affected by CVE-2001-1060. The vulnerability is tied to two PHP scripts, tbl_copy.php and tbl_rename.php, where eval is used on user-controlled values (strCopyTableOK and strRenameTableOK). An attacker can craft a URL that, under certain conditions (including th...

CVE-2001-0478

CVE-2001-0478 affects phpMyAdmin 2.2.0 and earlier. The vulnerability is a directory traversal in the sql.php parameter that allows a remote attacker to execute arbitrary code by supplying a .. path segment. Several sources corroborate arbitrary code execution or arbitrary file access via sql.php...