Vulnerabilities > Phppgadmin > Phppgadmin > 3.4.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2011-10-08 | CVE-2011-3598 | Cross-Site Scripting vulnerability in PHPpgadmin Multiple cross-site scripting (XSS) vulnerabilities in phpPgAdmin before 5.0.3 allow remote attackers to inject arbitrary web script or HTML via (1) a web page title, related to classes/Misc.php; or the (2) return_url or (3) return_desc parameter to display.php. | 4.3 |
2008-12-16 | CVE-2008-5587 | Path Traversal vulnerability in PHPpgadmin Directory traversal vulnerability in libraries/lib.inc.php in phpPgAdmin 4.2.1 and earlier, when register_globals is enabled, allows remote attackers to read arbitrary files via a .. | 4.3 |
2005-07-13 | CVE-2005-2256 | Directory Traversal vulnerability in PHPPGAdmin Login Form Encoded directory traversal vulnerability in phpPgAdmin 3.1 to 3.5.3 allows remote attackers to access arbitrary files via "%2e%2e%2f" (encoded dot dot) sequences in the formLanguage parameter. | 5.0 |