Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2005-2792 — Path Traversal in Phpldapadmin

CWE-22 — Path Traversal5 documents5 sources

Severity

5.0MEDIUMNVD

EPSS

14.0%

top 5.65%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Phpldapadmin Project Phpldapadmin Debian Phpldapadmin

Timeline

PublishedSep 2

Latest updateMay 1

Description

Directory traversal vulnerability in welcome.php in phpLDAPadmin 0.9.6 and 0.9.7 allows remote attackers to read arbitrary files via a .. (dot dot) in the custom_welcome_page parameter.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages3 packages

▶debiandebian/phpldapadmin< phpldapadmin 0.9.6c-7 (bookworm)

▶Debianphpldapadmin_project/phpldapadmin< 0.9.6c-7+2

▶NVDphpldapadmin_project/phpldapadmin0.9.6, 0.9.7+1

🔴Vulnerability Details

GHSA

GHSA-rw8c-ph3p-pggf: Directory traversal vulnerability in welcome↗2022-05-01

▶

OSV

CVE-2005-2792: Directory traversal vulnerability in welcome↗2005-09-02

▶

💥Exploits & PoCs

Exploit-DB

phpLDAPadmin 0.9.6/0.9.7 - 'welcome.php' Arbitrary File Inclusion↗2005-08-30

▶

📋Vendor Advisories

Debian

CVE-2005-2792: phpldapadmin - Directory traversal vulnerability in welcome.php in phpLDAPadmin 0.9.6 and 0.9.7...↗2005

▶