CVE: CVE-2005-2256

Export to Word

Encoded directory traversal vulnerability in phpPgAdmin 3.1 to 3.5.3 allows remote attackers to access arbitrary files via "%2e%2e%2f" (encoded dot dot) sequences in the formLanguage parameter.

Threat-Mapped Scoring

Score: 0.0

Priority: Unclassified

EPSS

Score: 0.12524
Percentile: 0.93621

CVSS Scoring

CVSS v2 Score: 5.0

Severity:

Affected Products

cpe:2.3:a:phppgadmin:phppgadmin:3.1:*:*:*:*:*:*:*
cpe:2.3:a:phppgadmin:phppgadmin:3.2:*:*:*:*:*:*:*
cpe:2.3:a:phppgadmin:phppgadmin:3.3:*:*:*:*:*:*:*
cpe:2.3:a:phppgadmin:phppgadmin:3.4:*:*:*:*:*:*:*
cpe:2.3:a:phppgadmin:phppgadmin:3.4.1:*:*:*:*:*:*:*
cpe:2.3:a:phppgadmin:phppgadmin:3.5.3:*:*:*:*:*:*:*

← Back to Home