CVSS: 5.0EPSS: 1%CPEs: 6EXPL: 3CVE-2005-2256 – phpPgAdmin 3.x - Login Form Directory Traversal
https://notcve.org/view.php?id=CVE-2005-2256
Encoded directory traversal vulnerability in phpPgAdmin 3.1 to 3.5.3 allows remote attackers to access arbitrary files via "%2e%2e%2f" (encoded dot dot) sequences in the formLanguage parameter. Vulnerabilidad de franqueo de directorioes en phpPgAdmin 3.1 hasta la 3.5.3 permite que atacantes remotos accedan a ficheros arbitrarios mediante secuencias "%2e%2e%2f" en el parámetro "formLanguage". • https://www.exploit-db.com/exploits/25938 http://archives.neohapsis.com/archives/dailydave/2005-q3/0010.html http://secunia.com/advisories/15941 http://secunia.com/advisories/16116 http://securitytracker.com/id?1014414 http://sourceforge.net/project/shownotes.php?release_id=342261 http://www.debian.org/security/2005/dsa-759 http://www.securityfocus.com/bid/14142 http://www.vuxml.org/freebsd/88188a8c-eff6-11d9-8310-0001020eed82.html •