Phpmyadmin : Security Vulnerabilities, CVEs, Published In 2011 (Directory traversal) CVSS score >= 1
Multiple directory traversal vulnerabilities in the relational schema implementation in phpMyAdmin 3.4.x before 3.4.3.2 allow remote authenticated users to include and execute arbitrary local files via directory traversal sequences in an export type field, related to (1) libraries/schema/User_Schema.class.php and (2) schema_export.php.
Max CVSS
6.0
EPSS Score
0.90%
Published
2011-08-01
Updated
2023-02-13
Directory traversal vulnerability in sql.php in phpMyAdmin 3.4.x before 3.4.3.2, when configuration storage is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in a MIME-type transformation parameter.
Max CVSS
6.8
EPSS Score
2.63%
Published
2011-08-01
Updated
2017-08-29
Directory traversal vulnerability in libraries/display_tbl.lib.php in phpMyAdmin 3.x before 3.3.10.2 and 3.4.x before 3.4.3.1, when a certain MIME transformation feature is enabled, allows remote authenticated users to include and execute arbitrary local files via a .. (dot dot) in a GLOBALS[mime_map][$meta->name][transformation] parameter.
Max CVSS
6.0
EPSS Score
22.05%
Published
2011-07-14
Updated
2018-10-09
3 vulnerabilities found