Encoded directory traversal vulnerability in phpPgAdmin 3.1 to 3.5.3 allows remote malicious users to access arbitrary files via "%2e%2e%2f" (encoded dot dot) sequences in the formLanguage parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
phppgadmin phppgadmin 3.1 |
||
phppgadmin phppgadmin 3.5.3 |
||
phppgadmin phppgadmin 3.2 |
||
phppgadmin phppgadmin 3.3 |
||
phppgadmin phppgadmin 3.4 |
||
phppgadmin phppgadmin 3.4.1 |