CVE-2004-0129

Exploit

EPSS 13.29%
Veröffentlicht 03.03.2004 05:00:00
Zuletzt bearbeitet 16.04.2026 00:27:16
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Directory traversal vulnerability in export.php in phpMyAdmin 2.5.5 and earlier allows remote attackers to read arbitrary files via .. (dot dot) sequences in the what parameter.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 11

NVD 29 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Phpmyadmin ≫ Phpmyadmin Version2.0

Phpmyadmin ≫ Phpmyadmin Version2.0.1

Phpmyadmin ≫ Phpmyadmin Version2.0.2

Phpmyadmin ≫ Phpmyadmin Version2.0.3

Phpmyadmin ≫ Phpmyadmin Version2.0.4

Phpmyadmin ≫ Phpmyadmin Version2.0.5

Phpmyadmin ≫ Phpmyadmin Version2.1

Phpmyadmin ≫ Phpmyadmin Version2.1.1

Phpmyadmin ≫ Phpmyadmin Version2.1.2

Phpmyadmin ≫ Phpmyadmin Version2.2.2

Phpmyadmin ≫ Phpmyadmin Version2.2.3

Phpmyadmin ≫ Phpmyadmin Version2.2.4

Phpmyadmin ≫ Phpmyadmin Version2.2.5

Phpmyadmin ≫ Phpmyadmin Version2.2.6

Phpmyadmin ≫ Phpmyadmin Version2.2_pre1

Phpmyadmin ≫ Phpmyadmin Version2.2_rc1

Phpmyadmin ≫ Phpmyadmin Version2.2_rc2

Phpmyadmin ≫ Phpmyadmin Version2.2_rc3

Phpmyadmin ≫ Phpmyadmin Version2.3.1

Phpmyadmin ≫ Phpmyadmin Version2.3.2

Phpmyadmin ≫ Phpmyadmin Version2.4.0

Phpmyadmin ≫ Phpmyadmin Version2.5.0

Phpmyadmin ≫ Phpmyadmin Version2.5.1

Phpmyadmin ≫ Phpmyadmin Version2.5.2

Phpmyadmin ≫ Phpmyadmin Version2.5.4

Phpmyadmin ≫ Phpmyadmin Version2.5.5

Phpmyadmin ≫ Phpmyadmin Version2.5.5_pl1

Phpmyadmin ≫ Phpmyadmin Version2.5.5_rc1

Phpmyadmin ≫ Phpmyadmin Version2.5.5_rc2

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	13.29%	0.939

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N

Es wurden noch keine Informationen zu CWE veröffentlicht.

http://marc.info/?l=bugtraq&m=107582619125932&w=2

http://secunia.com/advisories/10769

http://security.gentoo.org/glsa/glsa-200402-05.xml

Vendor Advisory

http://sourceforge.net/forum/forum.php?forum_id=350228

http://www.osvdb.org/3800

http://www.phpmyadmin.net/home_page/relnotes.php?rel=0

http://www.securityfocus.com/bid/9564

Patch

Vendor Advisory

Exploit

https://exchange.xforce.ibmcloud.com/vulnerabilities/15021

https://nvd.nist.gov/vuln/detail/CVE-2004-0129

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2004-0129

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2004-0129

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2004-0129