Lucene search
PRIOn knowledge basePRION:CVE-2008-5587HistoryDec 16, 2008 - 7:07 p.m.
Directory traversal
2008-12-1619:07:00
PRIOn knowledge base
www.prio-n.com
6
Directory traversal vulnerability in libraries/lib.inc.php in phpPgAdmin 4.2.1 and earlier, when register_globals is enabled, allows remote attackers to read arbitrary files via a … (dot dot) in the _language parameter to index.php.
| CPE | Name | Operator | Version |
|---|---|---|---|
| phppgadmin | le | 4.2.1 | |
| phppgadmin | eq | 3.5.3 | |
| phppgadmin | eq | 2.2 | |
| phppgadmin | eq | 3.1 | |
| phppgadmin | eq | 3.4.1 | |
| phppgadmin | eq | 4.1.1 | |
| phppgadmin | eq | 2.2.1 | |
| phppgadmin | eq | 3.5 | |
| phppgadmin | eq | 3.5.2 |
References
lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html
lists.opensuse.org/opensuse-updates/2012-04/msg00033.html
secunia.com/advisories/33014
secunia.com/advisories/33263
securityreason.com/securityalert/4737
www.debian.org/security/2008/dsa-1693
www.securityfocus.com/bid/32670
exchange.xforce.ibmcloud.com/vulnerabilities/47140
www.exploit-db.com/exploits/7363
Related
nessus
nessus
FreeBSD : phppgadmin -- directory traversal with register_globals enabled (4ce3c20b-124b-11de-a964-0030843d3802)
2009-03-17 00:00:00
openSUSE Security Update : phpPgAdmin (phpPgAdmin-503)
2009-07-21 00:00:00
Fedora 8 : phpPgAdmin-4.2.2-1.fc8 (2008-11576)
2008-12-21 00:00:00
openvas
openvas
FreeBSD Ports: phppgadmin
2009-03-20 00:00:00
Fedora Update for phpPgAdmin FEDORA-2008-11602
2009-02-13 00:00:00
Fedora Update for phpPgAdmin FEDORA-2008-11564
2009-02-13 00:00:00
redhatcve
redhatcve
CVE-2008-5587
2019-10-04 20:55:20
cve
cve
CVE-2008-5587
2008-12-16 19:07:31
fedora
fedora
[SECURITY] Fedora 9 Update: phpPgAdmin-4.2.2-1.fc9
2008-12-21 08:32:42
[SECURITY] Fedora 10 Update: phpPgAdmin-4.2.2-1.fc10
2008-12-21 08:38:59
[SECURITY] Fedora 8 Update: phpPgAdmin-4.2.2-1.fc8
2008-12-21 08:42:01
nuclei
nuclei
phpPgAdmin <=4.2.1 - Local File Inclusion
2021-11-20 12:30:04
freebsd
freebsd
phppgadmin -- directory traversal with register_globals enabled
2008-12-08 00:00:00
ubuntucve
ubuntucve
CVE-2008-5587
2008-12-16 00:00:00
nvd
nvd
CVE-2008-5587
2008-12-16 19:07:31
debiancve
debiancve
CVE-2008-5587
2008-12-16 19:07:31
cvelist
cvelist
CVE-2008-5587
2008-12-16 18:00:00
securityvulns
securityvulns
osv
osv
phppgadmin - several vulnerabilities
2008-12-27 00:00:00
debian
debian
[SECURITY] [DSA 1693-2] New phppgadmin packages fix regression
2009-01-21 10:21:28
[SECURITY] [DSA 1693-1] New phppgadmin packages fix several vulnerabilities
2008-12-27 11:54:26