Description

phpMyAdmin 2.7.0-beta1 and earlier allows remote attackers to obtain the full path of the server via direct requests to multiple scripts in the libraries directory.

Remediation

References

CVE-2005-3622

Related Vulnerabilities

TYPO3 Insufficient Session Expiration Vulnerability (CVE-2022-23502)

MySQL CVE-2013-1555 Vulnerability (CVE-2013-1555)

WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-5734)

WordPress Plugin WP-FaceThumb 'pagination_wp_facethumb' Parameter Cross-Site Scripting (0.1)

PostgreSQL Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2018-1053)

Severity

Medium

Classification

CVE-2005-3622

Tags

Missing Update Known Vulnerabilities