5

CVE-2005-0459

Exploit

phpMyAdmin 2.6.2-dev, and possibly earlier versions, allows remote attackers to determine the full path of the web root via a direct request to select_lang.lib.php, which reveals the path in a PHP error message.

Data is provided by the National Vulnerability Database (NVD)
PhpmyadminPhpmyadmin Version2.0
PhpmyadminPhpmyadmin Version2.0.1
PhpmyadminPhpmyadmin Version2.0.2
PhpmyadminPhpmyadmin Version2.0.3
PhpmyadminPhpmyadmin Version2.0.4
PhpmyadminPhpmyadmin Version2.0.5
PhpmyadminPhpmyadmin Version2.1
PhpmyadminPhpmyadmin Version2.1.1
PhpmyadminPhpmyadmin Version2.1.2
PhpmyadminPhpmyadmin Version2.2.2
PhpmyadminPhpmyadmin Version2.2.3
PhpmyadminPhpmyadmin Version2.2.4
PhpmyadminPhpmyadmin Version2.2.5
PhpmyadminPhpmyadmin Version2.2.6
PhpmyadminPhpmyadmin Version2.2_pre1
PhpmyadminPhpmyadmin Version2.2_rc1
PhpmyadminPhpmyadmin Version2.2_rc2
PhpmyadminPhpmyadmin Version2.2_rc3
PhpmyadminPhpmyadmin Version2.3.1
PhpmyadminPhpmyadmin Version2.3.2
PhpmyadminPhpmyadmin Version2.4.0
PhpmyadminPhpmyadmin Version2.5.0
PhpmyadminPhpmyadmin Version2.5.1
PhpmyadminPhpmyadmin Version2.5.2
PhpmyadminPhpmyadmin Version2.5.4
PhpmyadminPhpmyadmin Version2.5.5
PhpmyadminPhpmyadmin Version2.5.5_pl1
PhpmyadminPhpmyadmin Version2.5.5_rc1
PhpmyadminPhpmyadmin Version2.5.5_rc2
PhpmyadminPhpmyadmin Version2.5.6_rc1
PhpmyadminPhpmyadmin Version2.5.7
PhpmyadminPhpmyadmin Version2.5.7_pl1
PhpmyadminPhpmyadmin Version2.6.0_pl1
PhpmyadminPhpmyadmin Version2.6.0_pl2
PhpmyadminPhpmyadmin Version2.6.0_pl3
PhpmyadminPhpmyadmin Version2.6.2_dev
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.36% 0.553
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:P/I:N/A:N
http://securitytracker.com/id?1013210
Vendor Advisory
Exploit