phpMyAdmin 2.6.2-dev, and possibly earlier versions, allows remote attackers to determine the full path of the web root via a direct request to select_lang.lib.php, which reveals the path in a PHP error message.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
http://securitytracker.com/id?1013210 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2005-02-17T05:00:00
Updated: 2024-08-07T21:13:54.255Z
Reserved: 2005-02-17T00:00:00
Link: CVE-2005-0459
Vulnrichment
No data.
NVD
Status : Modified
Published: 2005-05-02T04:00:00.000
Modified: 2024-11-20T23:55:10.410
Link: CVE-2005-0459
Redhat
No data.