Your submission was sent successfully! Close

CVE-2008-5587

Published: 16 December 2008

Directory traversal vulnerability in libraries/lib.inc.php in phpPgAdmin 4.2.1 and earlier, when register_globals is enabled, allows remote attackers to read arbitrary files via a .. (dot dot) in the _language parameter to index.php.

Priority

Medium

Status

Package Release Status
phppgadmin
Launchpad, Ubuntu, Debian
Upstream
Released (4.2.1-1.1)