Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2013-4998
HistoryJul 31, 2013 - 1:20 p.m.

CVE-2013-4998

2013-07-3113:20:08
CWE-200
[email protected]
web.nvd.nist.gov

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

5.9 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

49.3%

JSON

phpMyAdmin 3.5.x before 3.5.8.2 and 4.0.x before 4.0.4.2 allows remote attackers to obtain sensitive information via an invalid request, which reveals the installation path in an error message, related to pmd_common.php and other files.

Affected configurations

NVD
Node
phpmyadminphpmyadminMatch3.5.0.0
OR
phpmyadminphpmyadminMatch3.5.1.0
OR
phpmyadminphpmyadminMatch3.5.2.0
OR
phpmyadminphpmyadminMatch3.5.2.1
OR
phpmyadminphpmyadminMatch3.5.2.2
OR
phpmyadminphpmyadminMatch3.5.3.0
OR
phpmyadminphpmyadminMatch3.5.4
OR
phpmyadminphpmyadminMatch3.5.5
OR
phpmyadminphpmyadminMatch3.5.6
OR
phpmyadminphpmyadminMatch3.5.7
OR
phpmyadminphpmyadminMatch3.5.7rc1
OR
phpmyadminphpmyadminMatch3.5.8
OR
phpmyadminphpmyadminMatch3.5.8rc1
OR
phpmyadminphpmyadminMatch3.5.8.1
Node
phpmyadminphpmyadminMatch4.0.0
OR
phpmyadminphpmyadminMatch4.0.0rc2
OR
phpmyadminphpmyadminMatch4.0.0rc3
OR
phpmyadminphpmyadminMatch4.0.1
OR
phpmyadminphpmyadminMatch4.0.2
OR
phpmyadminphpmyadminMatch4.0.3
OR
phpmyadminphpmyadminMatch4.0.4
OR
phpmyadminphpmyadminMatch4.0.4.1

Related

debiancve 1
prion 1
cve 1
ubuntucve 1
cvelist 1
phpmyadmin 1
securityvulns 2
mageia 1
nessus 7
openvas 4
fedora 2
gentoo 1
debiancve
debiancve
CVE-2013-4998
2022-10-03 16:14:58
prion
prion
Design/Logic Flaw
2013-07-31 13:20:00
cve
cve
CVE-2013-4998
2022-10-03 16:14:58
ubuntucve
ubuntucve
CVE-2013-4998
2013-07-31 00:00:00
cvelist
cvelist
CVE-2013-4998
2022-10-03 16:14:58
phpmyadmin
phpmyadmin
Full path disclosure vulnerabilities.
2013-07-28 00:00:00
securityvulns
securityvulns
[ MDVSA-2013:203 ] phpmyadmin
2013-09-09 00:00:00
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2013-09-09 00:00:00
mageia
mageia
Updated phpmyadmin packages fix security vulnerabilities
2013-07-29 18:06:10
nessus
nessus
Mandriva Linux Security Advisory : phpmyadmin (MDVSA-2013:203)
2013-07-31 00:00:00
Fedora 20 : phpMyAdmin-4.2.6-1.fc20 (2014-8581)
2014-07-31 00:00:00
Fedora 19 : phpMyAdmin-4.2.6-1.fc19 (2014-8577)
2014-07-31 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2013-0238)
2022-01-28 00:00:00
Fedora Update for phpMyAdmin FEDORA-2014-8581
2014-08-05 00:00:00
Fedora Update for phpMyAdmin FEDORA-2014-8577
2014-08-05 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: phpMyAdmin-4.2.6-1.fc19
2014-07-30 07:02:40
[SECURITY] Fedora 20 Update: phpMyAdmin-4.2.6-1.fc20
2014-07-30 07:01:17
gentoo
gentoo
phpMyAdmin: Multiple vulnerabilities
2013-11-04 00:00:00

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

5.9 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

49.3%

JSON
Related for NVD:CVE-2013-4998
debiancve1prion1cve1ubuntucve1cvelist1phpmyadmin1securityvulns2mageia1nessus7openvas4fedora2gentoo1