Description

Directory traversal vulnerability in phpMyAdmin 2.2.0 and earlier versions allows remote attackers to execute arbitrary code via a .. (dot dot) in an argument to the sql.php script.

Remediation

References

CVE-2001-0478

Related Vulnerabilities

WordPress 2.9.1 Trashed Posts Security Bypass Vulnerability (2.9 - 2.9.1)

Envoy Proxy Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') Vulnerability (CVE-2024-23326)

Joomla! Core Security Bypass (2.5.0 - 3.9.27)

WordPress Plugin Import Export WordPress Users Security Bypass (1.3.8)

WordPress Plugin Advanced Order Export For WooCommerce CSV Injection (1.5.4)

Severity

High

Classification

CVE-2001-0478

Tags

Missing Update Known Vulnerabilities