CVE-2009-1148
EPSS 0.60%發布日:2009/3/26修改日:2026/5/7
也稱為:DEBIAN-CVE-2009-1148
描述
Directory traversal vulnerability in bs_disp_as_mime_type.php in the BLOB streaming feature in phpMyAdmin before 3.1.3.1 allows remote attackers to read arbitrary files via directory traversal sequences in the file_path parameter ($filename variable).
受影響套件(1)
- Debian/phpmyadminfrom 0, < 4:3.1.3.1-1