Directory traversal vulnerability in bs_disp_as_mime_type.php in the BLOB streaming feature in phpMyAdmin before 22.214.171.124 allows remote attackers to read arbitrary files via directory traversal sequences in the file_path parameter ($filename variable).
Publish Date : 2009-03-26 Last Update Date : 2009-04-16
OVAL (Open Vulnerability and Assessment Language) definitions define exactly what should be done to verify
a vulnerability or a missing patch. Check out the OVAL definitions
if you want to learn what you should do to verify a vulnerability.