PT-2013-4246 · Phpmyadmin · Phpmyadmin
Janek Vind
·
Publicado
2013-04-26
·
Atualizado
2024-06-15
·
CVE-2013-3240
CVSS v2.0
6.5
Média
| Vetor | AV:N/AC:L/Au:S/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
phpMyAdmin versions prior to 4.0.0-rc3
Description
The issue concerns a directory traversal vulnerability in the Export feature. This allows remote authenticated users to read arbitrary files or possibly have unspecified other impact via a parameter that specifies a crafted export type.
Recommendations
For versions prior to 4.0.0-rc3, update to version 4.0.0-rc3 or later to resolve the issue.
Exploit
Correção
Path traversal
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Phpmyadmin