Description

phpMyAdmin 2.7.0-beta1 and earlier allows remote attackers to obtain the full path of the server via direct requests to multiple scripts in the libraries directory.

Remediation

References

CVE-2005-3622

Related Vulnerabilities

SharePoint CVE-2023-21716 Vulnerability (CVE-2023-21716)

WordPress Plugin MainWP Child-Securely connects sites to the MainWP WordPress Manager Dashboard Security Bypass (3.4.4)

MySQL CVE-2021-2300 Vulnerability (CVE-2021-2300)

Piwigo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-24620)

WordPress Plugin Content Control-User Access Restriction Cross-Site Scripting (1.1.9)

Severity

Medium

Classification

CVE-2005-3622

Tags

Missing Update Known Vulnerabilities