Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
phpMyAdmin Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2009-1148 - Vulnerability Database
phpMyAdmin

phpMyAdmin Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2009-1148

Medium
Reference: CVE-2009-1148
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2009-1148
Title: phpMyAdmin Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Overview:

Directory traversal vulnerability in bs_disp_as_mime_type.php in the BLOB streaming feature in phpMyAdmin before 3.1.3.1 allows remote attackers to read arbitrary files via directory traversal sequences in the file_path parameter (filename variable).