5 lines
No EOL
468 B
Text
Executable file
5 lines
No EOL
468 B
Text
Executable file
source: http://www.securityfocus.com/bid/7963/info
|
|
|
|
A vulnerability has been reported for phpMyAdmin that may reveal the contents of directories to remote attackers. The vulnerability exists due to insufficient sanitization of user-supplied input. Specifically, dot-dot-slash '../' directory traversal sequences are not sufficiently sanitized from URI parameters.
|
|
|
|
http://localhost/mysql/db_details_importdocsql.php?submit_show=true&do=import&docpath=[../../../] |