CVE-2009-1148 — Path Traversal in Phpmyadmin

CWE-22 — Path Traversal5 documents5 sources

Severity

5.0MEDIUMNVD

EPSS

0.6%

top 30.62%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Phpmyadmin Debian Phpmyadmin

Timeline

PublishedMar 26

Latest updateMay 2

Description

Directory traversal vulnerability in bs_disp_as_mime_type.php in the BLOB streaming feature in phpMyAdmin before 3.1.3.1 allows remote attackers to read arbitrary files via directory traversal sequences in the file_path parameter ($filename variable).

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages3 packages

▶debiandebian/phpmyadmin< phpmyadmin 4:3.1.3.1-1 (bookworm)

▶Debianphpmyadmin/phpmyadmin< 4:3.1.3.1-1+3

▶NVDphpmyadmin/phpmyadmin3.1.3+5

Patches

Patch: www.phpmyadmin.net ↗Patch: www.phpmyadmin.net ↗

🔴Vulnerability Details

GHSA

GHSA-2c4q-6j77-737f: Directory traversal vulnerability in bs_disp_as_mime_type↗2022-05-02

▶

OSV

CVE-2009-1148: Directory traversal vulnerability in bs_disp_as_mime_type↗2009-03-26

▶

📋Vendor Advisories

Debian

CVE-2009-1148: phpmyadmin - Directory traversal vulnerability in bs_disp_as_mime_type.php in the BLOB stream...↗2009

▶

Red Hat

phpMyAdmin: multiple security fixes in 3.1.3.1 (PMASA-2009-{1,2,3})↗

▶