FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

file disclosure in phpMyAdmin

Affected packages
phpMyAdmin <= 2.5.4

Details

VuXML ID cc0fb686-6550-11d8-80e3-0020ed76ef5a
Discovery 2004-02-17
Entry 2004-02-22

Lack of proper input validation in phpMyAdmin may allow an attacker to obtain the contents of any file on the target system that is readable by the web server.

References

CVE Name CVE-2004-0129
Message http://marc.theaimsgroup.com/?l=bugtraq&m=107582619125932&w=2
URL http://cvs.sourceforge.net/viewcvs.py/phpmyadmin/phpMyAdmin/export.php#rev2.3.2.1