Lucene search
RootSSV:60092HistoryMay 03, 2012 - 12:00 a.m.
phpMyAdmin 3.x 'show_config_errors.php'完整路径信息泄露漏洞
2012-05-0300:00:00
Root
www.seebug.org
16
0.007 Low
EPSS
Percentile
77.4%
BUGTRAQ ID: 52858
CVE ID: CVE-2012-1902
phpMyAdmin是一个用PHP编写的,可以通过web方式控制和操作MySQL数据库。
phpMyAdmin在实现上存在安全漏洞,show_config_errors.php没有验证配置文件的存在,因此错误信息中显示该文件的完整路径,导致信息泄露。
0
phpMyAdmin 3.x
厂商补丁:
phpMyAdmin
phpMyAdmin已经为此发布了一个安全公告(PMASA-2012-2)以及相应补丁:
PMASA-2012-2:PMASA-2012-2
链接:http://www.phpmyadmin.net/home_page/security/PMASA-2012-2.php
Related
nessus
nessus
debiancve
debiancve
CVE-2012-1902
2012-04-06 19:55:00
openvas
openvas
FreeBSD Ports: phpMyAdmin
2012-04-30 00:00:00
FreeBSD Ports: phpMyAdmin
2012-04-30 00:00:00
prion
prion
Design/Logic Flaw
2012-04-06 19:55:00
veracode
veracode
Path Information Disclosure
2017-07-20 06:15:23
ubuntucve
ubuntucve
CVE-2012-1902
2012-04-06 00:00:00
cve
cve
CVE-2012-1902
2012-04-06 19:55:00
phpmyadmin
phpmyadmin
Path disclosure due to missing verification of file presence.
2012-03-28 00:00:00
freebsd
freebsd
phpMyAdmin -- Path disclosure due to missing verification of file presence
2012-03-28 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: phpMyAdmin-3.5.0-1.fc17
2012-05-02 04:49:15
[SECURITY] Fedora 15 Update: phpMyAdmin-3.5.0-1.fc15
2012-05-01 00:49:16
[SECURITY] Fedora 16 Update: phpMyAdmin-3.5.0-1.fc16
2012-05-01 00:55:48
securityvulns
securityvulns
[ MDVSA-2012:050 ] phpmyadmin
2012-04-09 00:00:00