Details
Directory traversal vulnerability in libraries/lib.inc.php in phpPgAdmin 4.2.1 and earlier, when register_globals is enabled, allows remote attackers to read arbitrary files via a .. (dot dot) in the _language parameter to index.php.Novell Bugzilla entry: 462762 SUSE Security Advisories:
- SUSE-SR:2009:004, published Tue, 17 Feb 2009 10:00:00 +0000
- SUSE-SR:2009:004 , published Tue, 17 Feb 2009 10:00:00 +0000
| Product(s) | Fixed package version(s) | References |
|---|---|---|
| openSUSE 10.3 |
| ZYPP Patch Nr: 5984 SAT Patch Nr: 503 |
| openSUSE 11.0 |
| ZYPP Patch Nr: 5984 SAT Patch Nr: 503 |
| openSUSE 11.1 |
| ZYPP Patch Nr: 5984 SAT Patch Nr: 503 |