CVE-2016-5098Path Traversal in Phpmyadmin

CWE-22Path Traversal7 documents4 sources
Severity
5.3MEDIUMNVD
EPSS
0.5%
top 36.23%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
OpensusePhpmyadminDebian Phpmyadmin
Timeline
PublishedJul 5
Latest updateMay 14

Description

Directory traversal vulnerability in libraries/error_report.lib.php in phpMyAdmin before 4.6.2-prerelease allows remote attackers to determine the existence of arbitrary files by triggering an error.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages3 packages

Patches

Patch: github.comPatch: www.phpmyadmin.netPatch: github.com

🔴Vulnerability Details

1
GHSA
GHSA-fcqp-fp43-h6gm: Directory traversal vulnerability in libraries/error_report2022-05-14

📋Vendor Advisories

1
Debian
CVE-2016-5098: phpmyadmin - Directory traversal vulnerability in libraries/error_report.lib.php in phpMyAdmi...2016

💬Community

4
Bugzilla
CVE-2016-5097 CVE-2016-5098 CVE-2016-5099 phpmyadmin4: phpMyAdmin: Multiple issues fixed in 4.6.2 and 4.4.15.6 (PMASA-2016-16,PMASA-2016-15,PMASA-2016-14) [epel-5]2016-05-26
Bugzilla
CVE-2016-5097 CVE-2016-5098 CVE-2016-5099 phpMyAdmin: Multiple issues fixed in 4.6.2 and 4.4.15.6 (PMASA-2016-16,PMASA-2016-15,PMASA-2016-14) [fedora-all]2016-05-26
Bugzilla
CVE-2016-5097 CVE-2016-5098 CVE-2016-5099 phpMyAdmin: Multiple issues fixed in 4.6.2 and 4.4.15.6 (PMASA-2016-16,PMASA-2016-15,PMASA-2016-14)2016-05-26
Bugzilla
CVE-2016-5097 CVE-2016-5098 CVE-2016-5099 phpMyAdmin: Multiple issues fixed in 4.6.2 and 4.4.15.6 (PMASA-2016-16,PMASA-2016-15,PMASA-2016-14) [epel-all]2016-05-26