CVE-2011-2718

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2011-2718

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2011-2718.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2011-2718

Aliases

GHSA-xhqq-554j-p4x8

Downstream

DEBIAN-CVE-2011-2718

Published

2011-08-01T19:55:01Z

Modified

2025-08-09T19:01:26Z

Summary

[none]

Details

Multiple directory traversal vulnerabilities in the relational schema implementation in phpMyAdmin 3.4.x before 3.4.3.2 allow remote authenticated users to include and execute arbitrary local files via directory traversal sequences in an export type field, related to (1) libraries/schema/UserSchema.class.php and (2) schemaexport.php.

References

http://secunia.com/advisories/45365
http://secunia.com/advisories/45515
http://www.mandriva.com/security/advisories?name=MDVSA-2011:124
http://www.phpmyadmin.net/home_page/security/PMASA-2011-11.php
http://www.openwall.com/lists/oss-security/2011/07/25/4
http://www.openwall.com/lists/oss-security/2011/07/26/10
https://bugzilla.redhat.com/show_bug.cgi?id=725383
http://lists.fedoraproject.org/pipermail/package-announce/2011-August/063410.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-August/063418.html
http://osvdb.org/74111
http://phpmyadmin.git.sourceforge.net/git/gitweb.cgi?p=phpmyadmin/phpmyadmin%3Ba=commit%3Bh=3ae58f0cd6b89ad4767920f9b214c38d3f6d4393
http://www.securityfocus.com/bid/48874
https://exchange.xforce.ibmcloud.com/vulnerabilities/68768

CVE-2011-2718

Affected packages