Lucene search
Ubuntu.comUB:CVE-2012-1902HistoryApr 06, 2012 - 12:00 a.m.
CVE-2012-1902
2012-04-0600:00:00
ubuntu.com
ubuntu.com
17
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
EPSS
0.007
Percentile
79.8%
show_config_errors.php in phpMyAdmin 3.4.x before 3.4.10.2, when a
configuration file does not exist, allows remote attackers to obtain
sensitive information via a direct request, which reveals the installation
path in an error message about this missing file.
Notes
| Author | Note |
|---|---|
| tyhicks | Versions 3.4.x are affected. |
Related
freebsd
freebsd
phpMyAdmin -- Path disclosure due to missing verification of file presence
2012-03-28 00:00:00
phpmyadmin
phpmyadmin
Path disclosure due to missing verification of file presence.
2012-03-28 00:00:00
debiancve
debiancve
CVE-2012-1902
2012-04-06 19:55:01
nessus
nessus
nvd
nvd
CVE-2012-1902
2012-04-06 19:55:01
prion
prion
Design/Logic Flaw
2012-04-06 19:55:00
openvas
openvas
FreeBSD Ports: phpMyAdmin
2012-04-30 00:00:00
FreeBSD Ports: phpMyAdmin
2012-04-30 00:00:00
veracode
veracode
Path Information Disclosure
2017-07-20 06:15:23
seebug
seebug
phpMyAdmin 3.x 'show_config_errors.php'ĺŽć´čˇŻĺžäżĄćŻćłé˛ćźć´
2012-05-03 00:00:00
cvelist
cvelist
CVE-2012-1902
2012-04-06 19:00:00
cve
cve
CVE-2012-1902
2012-04-06 19:55:01
securityvulns
securityvulns
[ MDVSA-2012:050 ] phpmyadmin
2012-04-09 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: phpMyAdmin-3.5.0-1.fc17
2012-05-02 04:49:15
[SECURITY] Fedora 15 Update: phpMyAdmin-3.5.0-1.fc15
2012-05-01 00:49:16
[SECURITY] Fedora 16 Update: phpMyAdmin-3.5.0-1.fc16
2012-05-01 00:55:48
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
EPSS
0.007
Percentile
79.8%
Related for UB:CVE-2012-1902