GHSA-fcgm-62p3-f7cm
Suggest an improvement- Source
- https://github.com/advisories/GHSA-fcgm-62p3-f7cm
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-fcgm-62p3-f7cm/GHSA-fcgm-62p3-f7cm.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-fcgm-62p3-f7cm
- Aliases
- Published
- 2022-05-17T02:37:25Z
- Modified
- 2024-04-24T17:43:38.144900Z
- Severity
-
- 6.5 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
- Summary
- phpMyAdmin Local file exposure
- Details
-
An issue was discovered in phpMyAdmin. A user can exploit the LOAD LOCAL INFILE functionality to expose files on the server to the database system. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to 4.0.10.17) are affected.
- Database specific
{ "nvd_published_at": "2016-12-11T02:59:00Z", "cwe_ids": [ "CWE-200" ], "severity": "MODERATE", "github_reviewed": true, "github_reviewed_at": "2024-04-24T17:19:53Z" }- References
Affected packages
Packagist / phpmyadmin/phpmyadmin
Package
- Name
- phpmyadmin/phpmyadmin
- Purl
- pkg:composer/phpmyadmin/phpmyadmin
Packagist / phpmyadmin/phpmyadmin
Package
- Name
- phpmyadmin/phpmyadmin
- Purl
- pkg:composer/phpmyadmin/phpmyadmin
Packagist / phpmyadmin/phpmyadmin
Package
- Name
- phpmyadmin/phpmyadmin
- Purl
- pkg:composer/phpmyadmin/phpmyadmin